[SUSE-SU-2019:2330-1] Security update for mariadb, mariadb-connector-c
Severity
Important
Affected Packages
26
CVEs
3
Security update for mariadb, mariadb-connector-c
This update for mariadb and mariadb-connector-c fixes the following issues:
mariadb:
- Update to version 10.2.25 (bsc#1136035)
- CVE-2019-2628: Fixed a remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2627: Fixed another remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2614: Fixed a potential remote denial of service by an privileged attacker (bsc#1136035).
- Fixed reading options for multiple instances if my${INSTANCE}.cnf is used (bsc#1132666).
- Adjust mysql-systemd-helper ('shutdown protected MySQL' section) so it checks both ping response and the pid in a process list as it can take some time till the process is terminated. Otherwise it can lead to 'found left-over process' situation when regular mariadb is started (bsc#1143215).
mariadb-connector-c:
- Update to version 3.1.2 (bsc#1136035)
- Moved libmariadb.pc from /usr/lib/pkgconfig to /usr/lib64/pkgconfig for x86_64 (bsc#1126088)
- ID
- SUSE-SU-2019:2330-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20192330-1/
- Published
-
2019-09-06T14:09:00
(5 years ago) - Modified
-
2019-09-06T14:09:00
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS2-2019-1292
-
ALPINE:CVE-2019-2614
-
ALPINE:CVE-2019-2627
-
ALPINE:CVE-2019-2628
-
ALSA-2019:2511
-
ALSA-2019:3708
-
ELSA-2019-2327
-
ELSA-2019-2511
-
FEDORA-2019-60befaed69
-
FEDORA-2019-96516ce0ac
-
FEDORA-2019-c106e46a95
-
FEDORA-2019-f873e2799f
-
openSUSE-SU-2019:1913-1
-
openSUSE-SU-2019:1915-1
-
RHSA-2019:2327
-
RHSA-2019:2511
-
RHSA-2019:3708
-
RLSA-2019:2511
-
RLSA-2019:3708
-
SUSE-SU-2019:2020-1
-
SUSE-SU-2019:2461-1
-
SUSE-SU-2019:2687-1
-
SUSE-SU-2019:2867-1
-
SUSE-SU-2019:3270-1
-
USN-3957-1
-
USN-3957-2
-
USN-3957-3
-
USN-4070-3
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2019:2330-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2019:2330-1 |
|
|
| Bugzilla | SUSE Bug 1126088 |
|
|
| Bugzilla | SUSE Bug 1132666 |
|
|
| Bugzilla | SUSE Bug 1136035 |
|
|
| Bugzilla | SUSE Bug 1143215 |
|
|
| CVE | SUSE CVE CVE-2019-2614 page |
|
|
| CVE | SUSE CVE CVE-2019-2627 page |
|
|
| CVE | SUSE CVE CVE-2019-2628 page |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sles-12&sp=4 | suse |
 mariadb
|
< 10.2.25-3.19.2 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sled-12&sp=4 | suse |
mariadb
|
< 10.2.25-3.19.2 | sled-12 | x86_64 | |
| Affected | pkg:rpm/suse/mariadb?arch=s390x&distro=sles-12&sp=4 | suse |
mariadb
|
< 10.2.25-3.19.2 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/mariadb?arch=ppc64le&distro=sles-12&sp=4 | suse |
mariadb
|
< 10.2.25-3.19.2 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/mariadb?arch=aarch64&distro=sles-12&sp=4 | suse |
mariadb
|
< 10.2.25-3.19.2 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/mariadb-tools?arch=x86_64&distro=sles-12&sp=4 | suse |
mariadb-tools
|
< 10.2.25-3.19.2 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/mariadb-tools?arch=s390x&distro=sles-12&sp=4 | suse |
mariadb-tools
|
< 10.2.25-3.19.2 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/mariadb-tools?arch=ppc64le&distro=sles-12&sp=4 | suse |
mariadb-tools
|
< 10.2.25-3.19.2 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/mariadb-tools?arch=aarch64&distro=sles-12&sp=4 | suse |
mariadb-tools
|
< 10.2.25-3.19.2 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/mariadb-errormessages?arch=noarch&distro=sles-12&sp=4 | suse |
mariadb-errormessages
|
< 10.2.25-3.19.2 | sles-12 | noarch | |
| Affected | pkg:rpm/suse/mariadb-errormessages?arch=noarch&distro=sled-12&sp=4 | suse |
mariadb-errormessages
|
< 10.2.25-3.19.2 | sled-12 | noarch | |
| Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sles-12&sp=4 | suse |
mariadb-client
|
< 10.2.25-3.19.2 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sled-12&sp=4 | suse |
mariadb-client
|
< 10.2.25-3.19.2 | sled-12 | x86_64 | |
| Affected | pkg:rpm/suse/mariadb-client?arch=s390x&distro=sles-12&sp=4 | suse |
mariadb-client
|
< 10.2.25-3.19.2 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/mariadb-client?arch=ppc64le&distro=sles-12&sp=4 | suse |
mariadb-client
|
< 10.2.25-3.19.2 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/mariadb-client?arch=aarch64&distro=sles-12&sp=4 | suse |
mariadb-client
|
< 10.2.25-3.19.2 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/libmariadb_plugins?arch=x86_64&distro=sles-12&sp=4 | suse |
libmariadb_plugins
|
< 3.1.2-2.6.6 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libmariadb_plugins?arch=x86_64&distro=sled-12&sp=4 | suse |
libmariadb_plugins
|
< 3.1.2-2.6.6 | sled-12 | x86_64 | |
| Affected | pkg:rpm/suse/libmariadb_plugins?arch=s390x&distro=sles-12&sp=4 | suse |
libmariadb_plugins
|
< 3.1.2-2.6.6 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/libmariadb_plugins?arch=ppc64le&distro=sles-12&sp=4 | suse |
libmariadb_plugins
|
< 3.1.2-2.6.6 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/libmariadb_plugins?arch=aarch64&distro=sles-12&sp=4 | suse |
libmariadb_plugins
|
< 3.1.2-2.6.6 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/libmariadb3?arch=x86_64&distro=sles-12&sp=4 | suse |
libmariadb3
|
< 3.1.2-2.6.6 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libmariadb3?arch=x86_64&distro=sled-12&sp=4 | suse |
libmariadb3
|
< 3.1.2-2.6.6 | sled-12 | x86_64 | |
| Affected | pkg:rpm/suse/libmariadb3?arch=s390x&distro=sles-12&sp=4 | suse |
libmariadb3
|
< 3.1.2-2.6.6 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/libmariadb3?arch=ppc64le&distro=sles-12&sp=4 | suse |
libmariadb3
|
< 3.1.2-2.6.6 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/libmariadb3?arch=aarch64&distro=sles-12&sp=4 | suse |
libmariadb3
|
< 3.1.2-2.6.6 | sles-12 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |