Security update for mariadb-connector-c (important)

An update that fixes one vulnerability is now available.

Description:

This update for mariadb-connector-c fixes the following issues:

Security issue fixed:

• CVE-2020-13249: Fixed an improper validation of OK packets received from
  clients (bsc#1171550).

Non-security issues fixed:

• Update to release 3.1.8 (bsc#1171550)
  • CONC-304: Rename the static library to libmariadb.a and other
    libmariadb files in a consistent manner
  • CONC-441: Default user name for C/C is wrong if login user is
    different from effective user
  • CONC-449: Check $MARIADB_HOME/my.cnf in addition to $MYSQL_HOME/my.cnf
  • CONC-457: mysql_list_processes crashes in unpack_fields
  • CONC-458: mysql_get_timeout_value crashes when used improper
  • CONC-464: Fix static build for auth_gssapi_client plugin

This update was imported from the SUSE:SLE-15:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

• openSUSE Leap 15.1:

  zypper in -t patch openSUSE-2020-738=1