Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2019:2327
HistoryAug 30, 2019 - 3:38 a.m.

mariadb security update

2019-08-3003:38:17
CentOS Project
lists.centos.org
281

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.005 Low

EPSS

Percentile

76.5%

JSON

CentOS Errata and Security Advisory CESA-2019:2327

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

The following packages have been upgraded to a later upstream version: mariadb (5.5.64). (BZ#1610986, BZ#1664043)

Security Fix(es):

  • mysql: MyISAM unspecified vulnerability (CPU Jul 2018) (CVE-2018-3058)

  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2018) (CVE-2018-3063)

  • mysql: Client programs unspecified vulnerability (CPU Jul 2018) (CVE-2018-3081)

  • mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018) (CVE-2018-3282)

  • mysql: Server: Connection Handling unspecified vulnerability (CPU Jan 2019) (CVE-2019-2503)

  • mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2019) (CVE-2019-2529)

  • mysql: Server: Replication unspecified vulnerability (CPU Apr 2019) (CVE-2019-2614)

  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2019) (CVE-2019-2627)

  • mysql: Server: Options unspecified vulnerability (CPU Jul 2018) (CVE-2018-3066)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2019-August/032259.html

Affected packages:
mariadb
mariadb-bench
mariadb-devel
mariadb-embedded
mariadb-embedded-devel
mariadb-libs
mariadb-server
mariadb-test

Upstream details at:
https://access.redhat.com/errata/RHSA-2019:2327

OSVersionArchitecturePackageVersionFilename
CentOS7x86_64mariadb< 5.5.64-1.el7mariadb-5.5.64-1.el7.x86_64.rpm
CentOS7x86_64mariadb-bench< 5.5.64-1.el7mariadb-bench-5.5.64-1.el7.x86_64.rpm
CentOS7i686mariadb-devel< 5.5.64-1.el7mariadb-devel-5.5.64-1.el7.i686.rpm
CentOS7x86_64mariadb-devel< 5.5.64-1.el7mariadb-devel-5.5.64-1.el7.x86_64.rpm
CentOS7i686mariadb-embedded< 5.5.64-1.el7mariadb-embedded-5.5.64-1.el7.i686.rpm
CentOS7x86_64mariadb-embedded< 5.5.64-1.el7mariadb-embedded-5.5.64-1.el7.x86_64.rpm
CentOS7i686mariadb-embedded-devel< 5.5.64-1.el7mariadb-embedded-devel-5.5.64-1.el7.i686.rpm
CentOS7x86_64mariadb-embedded-devel< 5.5.64-1.el7mariadb-embedded-devel-5.5.64-1.el7.x86_64.rpm
CentOS7i686mariadb-libs< 5.5.64-1.el7mariadb-libs-5.5.64-1.el7.i686.rpm
CentOS7x86_64mariadb-libs< 5.5.64-1.el7mariadb-libs-5.5.64-1.el7.x86_64.rpm
Rows per page:
1-10 of 121

Related

redhat 1
nessus 47
amazon 3
oraclelinux 1
openvas 26
ubuntu 3
mageia 3
osv 14
debian 2
altlinux 3
suse 3
f5 1
prion 8
cvelist 10
cve 9
redhatcve 10
ubuntucve 9
veracode 10
cbl_mariner 1
mariadbunix 9
nvd 9
debiancve 8
alpinelinux 8
fedora 1
redhat
redhat
(RHSA-2019:2327) Moderate: mariadb security and bug fix update
2019-08-06 08:25:40
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : mariadb Multiple Vulnerabilities (NS-SA-2019-0197)
2019-10-15 00:00:00
Oracle Linux 7 : mariadb (ELSA-2019-2327)
2023-09-07 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : mariadb Multiple Vulnerabilities (NS-SA-2019-0243)
2019-12-31 00:00:00
amazon
amazon
Medium: mariadb
2019-09-13 23:24:00
Medium: mysql55
2018-08-22 19:33:00
Medium: mysql56
2018-08-22 19:34:00
oraclelinux
oraclelinux
mariadb security and bug fix update
2019-08-13 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for mariadb (EulerOS-SA-2019-2543)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2411-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-3725-2)
2022-08-26 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2018-07-30 00:00:00
MariaDB vulnerabilities
2019-05-23 00:00:00
MariaDB vulnerabilities
2019-06-05 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2018-08-12 23:39:12
Updated mariadb packages fix security vulnerability
2018-09-01 00:11:59
Updated mariadb packages fix security vulnerability
2019-05-19 14:27:30
osv
osv
mariadb-10.0 - security update
2018-08-31 00:00:00
mysql-5.5 - security update
2018-11-05 00:00:00
BIT-2020-14550
2023-11-06 07:33:07
debian
debian
[SECURITY] [DLA 1488-1] mariadb-10.0 security update
2018-08-31 22:01:19
[SECURITY] [DLA 1566-1] mysql-5.5 security update
2018-11-05 18:06:29
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version 10.1.35-alt1
2018-08-20 00:00:00
Security fix for the ALT Linux 9 package mariadb version 10.3.9-alt1
2018-08-19 00:00:00
Security fix for the ALT Linux 9 package mariadb version 10.3.15-alt1
2019-05-15 00:00:00
suse
suse
Security update for mariadb, mariadb-connector-c (important)
2019-08-15 00:00:00
Security update for mariadb, mariadb-connector-c (important)
2019-08-15 00:00:00
Security update for mysql-community-server (moderate)
2018-08-10 03:13:38
f5
f5
K53756439 : MySQL vulnerabilities CVE-2018-2767, CVE-2018-3063, CVE-2017-3653, and CVE-2018-3066
2022-01-18 00:00:00
prion
prion
Design/Logic Flaw
2020-07-15 18:15:00
Code injection
2019-01-16 19:30:00
Code injection
2018-07-18 13:29:00
cvelist
cvelist
CVE-2020-14550
2020-07-15 17:34:26
CVE-2019-2529
2019-01-16 19:00:00
CVE-2018-3282
2018-10-17 01:00:00
cve
cve
CVE-2020-14550
2020-07-15 18:15:18
CVE-2018-3063
2018-07-18 13:29:07
CVE-2018-3282
2018-10-17 01:31:29
redhatcve
redhatcve
CVE-2020-14550
2020-08-04 16:01:35
CVE-2018-3282
2020-04-04 04:59:54
CVE-2018-3066
2019-12-19 20:31:44
ubuntucve
ubuntucve
CVE-2020-14550
2020-07-15 00:00:00
CVE-2019-2529
2019-01-16 00:00:00
CVE-2018-3282
2018-10-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-08-20 02:26:07
Privilege Escalation
2019-05-16 03:22:41
Denial Of Service (DoS)
2019-05-27 00:40:12
cbl_mariner
cbl_mariner
CVE-2020-14550 affecting package mysql 8.0.20-
2021-08-25 19:57:27
mariadbunix
mariadbunix
CVE-2020-14550
2020-07-15 18:15:18
CVE-2018-3066
2018-07-18 13:29:00
CVE-2018-3063
2018-07-18 13:29:00
nvd
nvd
CVE-2020-14550
2020-07-15 18:15:18
CVE-2019-2529
2019-01-16 19:30:35
CVE-2018-3063
2018-07-18 13:29:07
debiancve
debiancve
CVE-2019-2529
2019-01-16 19:30:00
CVE-2018-3282
2018-10-17 01:31:00
CVE-2018-3066
2018-07-18 13:29:00
alpinelinux
alpinelinux
CVE-2019-2529
2019-01-16 19:30:35
CVE-2018-3063
2018-07-18 13:29:07
CVE-2018-3282
2018-10-17 01:31:29
fedora
fedora
[SECURITY] Fedora 30 Update: mariadb-10.3.17-1.fc30
2019-08-15 18:10:30

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.005 Low

EPSS

Percentile

76.5%

JSON
Related for CESA-2019:2327
redhat1nessus47amazon3oraclelinux1openvas26ubuntu3mageia3osv14debian2altlinux3suse3f51prion8cvelist10cve9redhatcve10ubuntucve9veracode10cbl_mariner1mariadbunix9nvd9debiancve8alpinelinux8fedora1