[SUSE-SU-2019:2048-1] Security update for mariadb
Severity
Important
Affected Packages
46
CVEs
12
Security update for mariadb
This update for mariadb fixes the following issues:
Update to MariaDB 10.0.38 GA (bsc#1136037).
Security issues fixed:
- CVE-2019-2537: Denial of service via multiple protocols (bsc#1136037)
- CVE-2019-2529: Denial of service via multiple protocols (bsc#1136037)
- CVE-2018-3282: Server Storage Engines unspecified vulnerability (CPU Oct 2018) (bsc#1112432)
- CVE-2018-3251: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112397)
- CVE-2018-3174: Client programs unspecified vulnerability (CPU Oct 2018) (bsc#1112368)
- CVE-2018-3156: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112417)
- CVE-2018-3143: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112421)
- CVE-2018-3066: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Options). (bsc#1101678)
- CVE-2018-3064: InnoDB unspecified vulnerability (CPU Jul 2018) (bsc#1103342)
- CVE-2018-3063: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Security Privileges). (bsc#1101677)
- CVE-2018-3058: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent MyISAM). (bsc#1101676)
- CVE-2016-9843: Big-endian out-of-bounds pointer (bsc#1013882)
Non-security changes:
- Removed PerconaFT from the package as it has AGPL licence (bsc#1118754).
- Do not just remove tokudb plugin but don't build it at all (missing jemalloc dependency).
- Fixed reading options for multiple instances if my${INSTANCE}.cnf is used (bsc#1132666).
- Removed 'umask 077' from mysql-systemd-helper that caused new datadirs created with wrong permissions (bsc#1132666).
Release notes and changelog:
- https://kb.askmonty.org/en/mariadb-10038-release-notes
- https://kb.askmonty.org/en/mariadb-10038-changelog
- https://kb.askmonty.org/en/mariadb-10037-release-notes
- https://kb.askmonty.org/en/mariadb-10037-changelog
- https://kb.askmonty.org/en/mariadb-10036-release-notes
- https://kb.askmonty.org/en/mariadb-10036-changelog
- ID
- SUSE-SU-2019:2048-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20192048-1/
- Published
-
2019-08-05T14:09:47
(5 years ago) - Modified
-
2019-08-05T14:09:47
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1068
- ALAS-2018-1069
- ALAS-2018-1070
- ALAS-2018-1114
- ALAS-2018-1115
- ALAS-2018-1116
- ALAS-2019-1178
- ALAS-2019-1181
- ALAS2-2019-1193
- ALAS2-2019-1292
- ALPINE:CVE-2016-9843
- ALPINE:CVE-2018-3058
- ALPINE:CVE-2018-3063
- ALPINE:CVE-2018-3064
- ALPINE:CVE-2018-3066
- ALPINE:CVE-2018-3143
- ALPINE:CVE-2018-3156
- ALPINE:CVE-2018-3174
- ALPINE:CVE-2018-3251
- ALPINE:CVE-2018-3282
- ALPINE:CVE-2019-2529
- ALPINE:CVE-2019-2537
- ALSA-2019:2511
- ALSA-2019:3708
- DSA-4341-1
- ELSA-2019-2327
- ELSA-2019-2511
- FEDORA-2018-192148f4ff
- FEDORA-2018-242f6c1a41
- FEDORA-2018-3a3c660bfa
- FEDORA-2018-4ae94c8deb
- FEDORA-2018-55b875c1ac
- FEDORA-2018-77e610115a
- FEDORA-2018-b4820696e1
- FEDORA-2018-c82fc3e109
- FEDORA-2018-d1c4a4ca50
- FEDORA-2018-f67fda3db6
- FEDORA-2019-21b76d179e
- FEDORA-2019-60befaed69
- FEDORA-2019-614f1cd5a8
- FEDORA-2019-6a8a9efc40
- FEDORA-2019-96516ce0ac
- FEDORA-2019-c1fab3f139
- FEDORA-2019-f873e2799f
- FREEBSD:085399AB-DFD7-11EA-96E4-80EE73BC7B66
- FREEBSD:909BE51B-9B3B-11E8-ADD2-B499BAEBFEAF
- FREEBSD:D3D02D3A-2242-11E9-B95C-B499BAEBFEAF
- FREEBSD:EC5072B0-D43A-11E8-A6D2-B499BAEBFEAF
- GLSA-201701-56
- GLSA-201908-24
- GLSA-202007-54
- openSUSE-SU-2019:0327-1
- RHSA-2017:1220
- RHSA-2017:1221
- RHSA-2017:1222
- RHSA-2019:2327
- RHSA-2019:2511
- RHSA-2019:3708
- RLSA-2019:2511
- RLSA-2019:3708
- SSA:2018-309-01
- SSA:2019-032-01
- SUSE-SU-2016:3209-1
- SUSE-SU-2017:0003-1
- SUSE-SU-2017:0004-1
- SUSE-SU-2017:1384-1
- SUSE-SU-2017:1385-1
- SUSE-SU-2017:1386-1
- SUSE-SU-2017:1387-1
- SUSE-SU-2017:1389-1
- SUSE-SU-2017:1444-1
- SUSE-SU-2017:2699-1
- SUSE-SU-2017:2700-1
- SUSE-SU-2017:2989-1
- SUSE-SU-2018:0005-1
- SUSE-SU-2018:1815-1
- SUSE-SU-2018:2411-1
- SUSE-SU-2018:3542-1
- SUSE-SU-2018:3972-1
- SUSE-SU-2018:4211-1
- SUSE-SU-2019:0119-1
- SUSE-SU-2019:0555-1
- SUSE-SU-2019:0609-1
- SUSE-SU-2019:0628-1
- SUSE-SU-2019:1162-1
- SUSE-SU-2019:1441-1
- SUSE-SU-2019:2118-1
- USN-3725-1
- USN-3725-2
- USN-3799-1
- USN-3799-2
- USN-3867-1
- USN-4246-1
- USN-4292-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sles-12&sp=2 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sles-12&sp=1 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb?arch=s390x&distro=sles-12&sp=2 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb?arch=s390x&distro=sles-12&sp=1 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb?arch=ppc64le&distro=sles-12&sp=2 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb?arch=ppc64le&distro=sles-12&sp=1 | suse | mariadb | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-tools?arch=x86_64&distro=sles-12&sp=2 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-tools?arch=x86_64&distro=sles-12&sp=1 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-tools?arch=s390x&distro=sles-12&sp=2 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-tools?arch=s390x&distro=sles-12&sp=1 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-tools?arch=ppc64le&distro=sles-12&sp=2 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-tools?arch=ppc64le&distro=sles-12&sp=1 | suse | mariadb-tools | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=x86_64&distro=sles-12&sp=2 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=x86_64&distro=sles-12&sp=1 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=s390x&distro=sles-12&sp=2 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=s390x&distro=sles-12&sp=1 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=ppc64le&distro=sles-12&sp=2 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=ppc64le&distro=sles-12&sp=1 | suse | mariadb-errormessages | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sles-12&sp=2 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sles-12&sp=1 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-client?arch=s390x&distro=sles-12&sp=2 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-client?arch=s390x&distro=sles-12&sp=1 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-client?arch=ppc64le&distro=sles-12&sp=2 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-client?arch=ppc64le&distro=sles-12&sp=1 | suse | mariadb-client | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqld18?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqld18 | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqld18?arch=s390x&distro=sles-12&sp=1 | suse | libmysqld18 | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqld18?arch=ppc64le&distro=sles-12&sp=1 | suse | libmysqld18 | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqld-devel | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=s390x&distro=sles-12&sp=1 | suse | libmysqld-devel | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=ppc64le&distro=sles-12&sp=1 | suse | libmysqld-devel | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqlclient_r18 | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=s390x&distro=sles-12&sp=1 | suse | libmysqlclient_r18 | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=ppc64le&distro=sles-12&sp=1 | suse | libmysqlclient_r18 | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=x86_64&distro=sles-12&sp=2 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=s390x&distro=sles-12&sp=2 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=s390x&distro=sles-12&sp=1 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=ppc64le&distro=sles-12&sp=2 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=ppc64le&distro=sles-12&sp=1 | suse | libmysqlclient18 | < 10.0.38-29.27.3 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=x86_64&distro=sles-12&sp=2 | suse | libmysqlclient18-32bit | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqlclient18-32bit | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=s390x&distro=sles-12&sp=2 | suse | libmysqlclient18-32bit | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=s390x&distro=sles-12&sp=1 | suse | libmysqlclient18-32bit | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=x86_64&distro=sles-12&sp=1 | suse | libmysqlclient-devel | < 10.0.38-29.27.3 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=s390x&distro=sles-12&sp=1 | suse | libmysqlclient-devel | < 10.0.38-29.27.3 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=ppc64le&distro=sles-12&sp=1 | suse | libmysqlclient-devel | < 10.0.38-29.27.3 | sles-12 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |