Lucene search

K
osvGoogleOSV:ALSA-2019:3708
HistoryNov 05, 2019 - 12:00 a.m.

Moderate: mariadb:10.3 security and bug fix update

2019-11-0500:00:00
Google
osv.dev
10
mariadb
10.3
security
bug fix
update
innodb
vulnerability
cpu
cve
galera
multi-user
sql
database
server
mysql
upstream
version
packages
galera
almalinux
release notes

AI Score

7.4

Confidence

Low

EPSS

0.004

Percentile

73.6%

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.
The following packages have been upgraded to a later upstream version: mariadb (10.3.17), galera (25.3.26). (BZ#1701687, BZ#1711265, BZ#1741358)
Security Fix(es):

  • mysql: InnoDB unspecified vulnerability (CPU Jan 2019) (CVE-2019-2510)
  • mysql: Server: DDL unspecified vulnerability (CPU Jan 2019) (CVE-2019-2537)
  • mysql: Server: Replication unspecified vulnerability (CPU Apr 2019) (CVE-2019-2614)
  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2019) (CVE-2019-2627)
  • mysql: InnoDB unspecified vulnerability (CPU Apr 2019) (CVE-2019-2628)
  • mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2019) (CVE-2019-2737)
  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2019) (CVE-2019-2739)
  • mysql: Server: XML unspecified vulnerability (CPU Jul 2019) (CVE-2019-2740)
  • mysql: InnoDB unspecified vulnerability (CPU Jul 2019) (CVE-2019-2758)
  • mysql: Server: Parser unspecified vulnerability (CPU Jul 2019) (CVE-2019-2805)
    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    Additional Changes:
    For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References