5 matches found
BIT-MARIADB-MIN-2020-7221
mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...
BIT-2020-7221
mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...
The vulnerability of the mysql_install_db function in the MariaDB database management system arises from an improper definition of the reference before accessing the file, allowing attackers to escalate their privileges.
The vulnerability of the mysqlinstalldb function in the MariaDB database management system is related to an incorrect definition of the reference before accessing the file. Exploiting this vulnerability can allow attackers to enhance their privileges...
mariadb security and bug fix update
1:5.5.65-1 - Rebase to 5.5.65 Also fixes: CVE-2019-2737 CVE-2019-2739 CVE-2019-2740 CVE-2019-2805 Resolves: 1741357 - Revert upstream changes that make the mysqlinstalldb relocatable because it broke mysqlinstalldb when run without --rpm arg Resolves: 1731062 - Add openssl BR that was missing for...
Privilege escalation
mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...