SUSE alert SUSE-SU-2020:1711-1 (mariadb)
| From: | sle-security-updates@lists.suse.com | |
| To: | sle-security-updates@lists.suse.com | |
| Subject: | SUSE-SU-2020:1711-1: moderate: Security update for mariadb | |
| Date: | Tue, 23 Jun 2020 13:17:07 +0000 | |
| Message-ID: | <01070172e15339cd-04dadefb-2236-4b5e-829c-150817a1503f-000000@eu-central-1.amazonses.com> |
SUSE Security Update: Security update for mariadb ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:1711-1 Rating: moderate References: #1171550 Cross-References: CVE-2020-13249 CVE-2020-2752 CVE-2020-2760 CVE-2020-2812 CVE-2020-2814 Affected Products: SUSE Linux Enterprise Module for Server Applications 15-SP1 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for mariadb to version 10.2.32 fixes the following issues: mariadb was updated to version 10.2.32 (bsc#1171550) - CVE-2020-2752: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-2812: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-2814: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-2760: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-13249: Fixed an improper validation of the content of an OK packet received from a server. Release notes and changelog: - https://mariadb.com/kb/en/library/mariadb-10232-release-n... - https://mariadb.com/kb/en/library/mariadb-10232-changelog Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Server Applications 15-SP1: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP1-2020-1711=1 Package List: - SUSE Linux Enterprise Module for Server Applications 15-SP1 (aarch64 ppc64le s390x x86_64): libmysqld-devel-10.2.32-3.29.2 libmysqld19-10.2.32-3.29.2 libmysqld19-debuginfo-10.2.32-3.29.2 mariadb-10.2.32-3.29.2 mariadb-client-10.2.32-3.29.2 mariadb-client-debuginfo-10.2.32-3.29.2 mariadb-debuginfo-10.2.32-3.29.2 mariadb-debugsource-10.2.32-3.29.2 mariadb-tools-10.2.32-3.29.2 mariadb-tools-debuginfo-10.2.32-3.29.2 - SUSE Linux Enterprise Module for Server Applications 15-SP1 (noarch): mariadb-errormessages-10.2.32-3.29.2 References: https://www.suse.com/security/cve/CVE-2020-13249.html https://www.suse.com/security/cve/CVE-2020-2752.html https://www.suse.com/security/cve/CVE-2020-2760.html https://www.suse.com/security/cve/CVE-2020-2812.html https://www.suse.com/security/cve/CVE-2020-2814.html https://bugzilla.suse.com/1171550 _______________________________________________ sle-security-updates mailing list sle-security-updates@lists.suse.com http://lists.suse.com/mailman/listinfo/sle-security-updates