[SUSE-SU-2019:2330-1] Security update for mariadb, mariadb-connector-c
Severity
Important
Affected Packages
26
CVEs
3
Security update for mariadb, mariadb-connector-c
This update for mariadb and mariadb-connector-c fixes the following issues:
mariadb:
- Update to version 10.2.25 (bsc#1136035)
- CVE-2019-2628: Fixed a remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2627: Fixed another remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2614: Fixed a potential remote denial of service by an privileged attacker (bsc#1136035).
- Fixed reading options for multiple instances if my${INSTANCE}.cnf is used (bsc#1132666).
- Adjust mysql-systemd-helper ('shutdown protected MySQL' section) so it checks both ping response and the pid in a process list as it can take some time till the process is terminated. Otherwise it can lead to 'found left-over process' situation when regular mariadb is started (bsc#1143215).
mariadb-connector-c:
- Update to version 3.1.2 (bsc#1136035)
- Moved libmariadb.pc from /usr/lib/pkgconfig to /usr/lib64/pkgconfig for x86_64 (bsc#1126088)
- ID
- SUSE-SU-2019:2330-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20192330-1/
- Published
-
2019-09-06T14:09:00
(5 years ago) - Modified
-
2019-09-06T14:09:00
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2019-1292
- ALPINE:CVE-2019-2614
- ALPINE:CVE-2019-2627
- ALPINE:CVE-2019-2628
- ALSA-2019:2511
- ALSA-2019:3708
- ELSA-2019-2327
- ELSA-2019-2511
- FEDORA-2019-60befaed69
- FEDORA-2019-96516ce0ac
- FEDORA-2019-c106e46a95
- FEDORA-2019-f873e2799f
- openSUSE-SU-2019:1913-1
- openSUSE-SU-2019:1915-1
- RHSA-2019:2327
- RHSA-2019:2511
- RHSA-2019:3708
- RLSA-2019:2511
- RLSA-2019:3708
- SUSE-SU-2019:2020-1
- SUSE-SU-2019:2461-1
- SUSE-SU-2019:2687-1
- SUSE-SU-2019:2867-1
- SUSE-SU-2019:3270-1
- USN-3957-1
- USN-3957-2
- USN-3957-3
- USN-4070-3
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2330-1.json | |
Suse | URL for SUSE-SU-2019:2330-1 | https://www.suse.com/support/update/announcement/2019/suse-su-20192330-1/ | |
Suse | E-Mail link for SUSE-SU-2019:2330-1 | https://lists.suse.com/pipermail/sle-security-updates/2019-September/005890.html | |
Bugzilla | SUSE Bug 1126088 | https://bugzilla.suse.com/1126088 | |
Bugzilla | SUSE Bug 1132666 | https://bugzilla.suse.com/1132666 | |
Bugzilla | SUSE Bug 1136035 | https://bugzilla.suse.com/1136035 | |
Bugzilla | SUSE Bug 1143215 | https://bugzilla.suse.com/1143215 | |
CVE | SUSE CVE CVE-2019-2614 page | https://www.suse.com/security/cve/CVE-2019-2614/ | |
CVE | SUSE CVE CVE-2019-2627 page | https://www.suse.com/security/cve/CVE-2019-2627/ | |
CVE | SUSE CVE CVE-2019-2628 page | https://www.suse.com/security/cve/CVE-2019-2628/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sles-12&sp=4 | suse | mariadb | < 10.2.25-3.19.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sled-12&sp=4 | suse | mariadb | < 10.2.25-3.19.2 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb?arch=s390x&distro=sles-12&sp=4 | suse | mariadb | < 10.2.25-3.19.2 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb?arch=ppc64le&distro=sles-12&sp=4 | suse | mariadb | < 10.2.25-3.19.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb?arch=aarch64&distro=sles-12&sp=4 | suse | mariadb | < 10.2.25-3.19.2 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/mariadb-tools?arch=x86_64&distro=sles-12&sp=4 | suse | mariadb-tools | < 10.2.25-3.19.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-tools?arch=s390x&distro=sles-12&sp=4 | suse | mariadb-tools | < 10.2.25-3.19.2 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-tools?arch=ppc64le&distro=sles-12&sp=4 | suse | mariadb-tools | < 10.2.25-3.19.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-tools?arch=aarch64&distro=sles-12&sp=4 | suse | mariadb-tools | < 10.2.25-3.19.2 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=noarch&distro=sles-12&sp=4 | suse | mariadb-errormessages | < 10.2.25-3.19.2 | sles-12 | noarch | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=noarch&distro=sled-12&sp=4 | suse | mariadb-errormessages | < 10.2.25-3.19.2 | sled-12 | noarch | |
Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sles-12&sp=4 | suse | mariadb-client | < 10.2.25-3.19.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sled-12&sp=4 | suse | mariadb-client | < 10.2.25-3.19.2 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-client?arch=s390x&distro=sles-12&sp=4 | suse | mariadb-client | < 10.2.25-3.19.2 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-client?arch=ppc64le&distro=sles-12&sp=4 | suse | mariadb-client | < 10.2.25-3.19.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-client?arch=aarch64&distro=sles-12&sp=4 | suse | mariadb-client | < 10.2.25-3.19.2 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/libmariadb_plugins?arch=x86_64&distro=sles-12&sp=4 | suse | libmariadb_plugins | < 3.1.2-2.6.6 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmariadb_plugins?arch=x86_64&distro=sled-12&sp=4 | suse | libmariadb_plugins | < 3.1.2-2.6.6 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/libmariadb_plugins?arch=s390x&distro=sles-12&sp=4 | suse | libmariadb_plugins | < 3.1.2-2.6.6 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmariadb_plugins?arch=ppc64le&distro=sles-12&sp=4 | suse | libmariadb_plugins | < 3.1.2-2.6.6 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmariadb_plugins?arch=aarch64&distro=sles-12&sp=4 | suse | libmariadb_plugins | < 3.1.2-2.6.6 | sles-12 | aarch64 | |
Affected | pkg:rpm/suse/libmariadb3?arch=x86_64&distro=sles-12&sp=4 | suse | libmariadb3 | < 3.1.2-2.6.6 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmariadb3?arch=x86_64&distro=sled-12&sp=4 | suse | libmariadb3 | < 3.1.2-2.6.6 | sled-12 | x86_64 | |
Affected | pkg:rpm/suse/libmariadb3?arch=s390x&distro=sles-12&sp=4 | suse | libmariadb3 | < 3.1.2-2.6.6 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmariadb3?arch=ppc64le&distro=sles-12&sp=4 | suse | libmariadb3 | < 3.1.2-2.6.6 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmariadb3?arch=aarch64&distro=sles-12&sp=4 | suse | libmariadb3 | < 3.1.2-2.6.6 | sles-12 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |