GoogleOSV:USN-5739-1mariadb-10.3, mariadb-10.6 vulnerabilities
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.9%
Several security issues were discovered in MariaDB and this update
includes new upstream MariaDB versions to fix these issues.
MariaDB has been updated to 10.3.37 in Ubuntu 20.04 LTS and to 10.6.11
in Ubuntu 22.04 LTS and Ubuntu 22.10.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
References
ubuntu.com/security/CVE-2018-25032
ubuntu.com/security/CVE-2021-46669
ubuntu.com/security/CVE-2022-21427
ubuntu.com/security/CVE-2022-27376
ubuntu.com/security/CVE-2022-27377
ubuntu.com/security/CVE-2022-27378
ubuntu.com/security/CVE-2022-27379
ubuntu.com/security/CVE-2022-27380
ubuntu.com/security/CVE-2022-27381
ubuntu.com/security/CVE-2022-27382
ubuntu.com/security/CVE-2022-27383
ubuntu.com/security/CVE-2022-27384
ubuntu.com/security/CVE-2022-27386
ubuntu.com/security/CVE-2022-27387
ubuntu.com/security/CVE-2022-27444
ubuntu.com/security/CVE-2022-27445
ubuntu.com/security/CVE-2022-27446
ubuntu.com/security/CVE-2022-27447
ubuntu.com/security/CVE-2022-27448
ubuntu.com/security/CVE-2022-27449
ubuntu.com/security/CVE-2022-27451
ubuntu.com/security/CVE-2022-27452
ubuntu.com/security/CVE-2022-27455
ubuntu.com/security/CVE-2022-27456
ubuntu.com/security/CVE-2022-27457
ubuntu.com/security/CVE-2022-27458
ubuntu.com/security/CVE-2022-32081
ubuntu.com/security/CVE-2022-32082
ubuntu.com/security/CVE-2022-32083
ubuntu.com/security/CVE-2022-32084
ubuntu.com/security/CVE-2022-32085
ubuntu.com/security/CVE-2022-32086
ubuntu.com/security/CVE-2022-32087
ubuntu.com/security/CVE-2022-32088
ubuntu.com/security/CVE-2022-32089
ubuntu.com/security/CVE-2022-32091
ubuntu.com/security/notices/USN-5739-1
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.9%