Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2020:4026
HistorySep 29, 2020 - 7:52 a.m.

(RHSA-2020:4026) Moderate: mariadb security and bug fix update

2020-09-2907:52:34
access.redhat.com
130
mariadb
sql database
security fix
upgraded
cve-2019-2974
cve-2020-2752
cve-2020-2780
cve-2020-2812
cve-2020-2574
red hat enterprise linux 7.9

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.009

Percentile

82.5%

JSON

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

The following packages have been upgraded to a later upstream version: mariadb (5.5.68). (BZ#1769276)

Security Fix(es):

  • mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2974)

  • mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752)

  • mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)

  • mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)

  • mysql: C API: unspecified vulnerability (CPU Jan 2020) (CVE-2020-2574)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64mariadb< 5.5.68-1.el7mariadb-5.5.68-1.el7.x86_64.rpm
RedHat7s390mariadb-debuginfo< 5.5.68-1.el7mariadb-debuginfo-5.5.68-1.el7.s390.rpm
RedHat7ppcmariadb-libs< 5.5.68-1.el7mariadb-libs-5.5.68-1.el7.ppc.rpm
RedHat7x86_64mariadb-debuginfo< 5.5.68-1.el7mariadb-debuginfo-5.5.68-1.el7.x86_64.rpm
RedHat7ppc64lemariadb-debuginfo< 5.5.68-1.el7mariadb-debuginfo-5.5.68-1.el7.ppc64le.rpm
RedHat7s390xmariadb-server< 5.5.68-1.el7mariadb-server-5.5.68-1.el7.s390x.rpm
RedHat7s390xmariadb-test< 5.5.68-1.el7mariadb-test-5.5.68-1.el7.s390x.rpm
RedHat7s390mariadb-devel< 5.5.68-1.el7mariadb-devel-5.5.68-1.el7.s390.rpm
RedHat7ppc64mariadb-server< 5.5.68-1.el7mariadb-server-5.5.68-1.el7.ppc64.rpm
RedHat7x86_64mariadb-devel< 5.5.68-1.el7mariadb-devel-5.5.68-1.el7.x86_64.rpm
Rows per page:
1-10 of 511

Related

nessus 58
centos 1
oraclelinux 3
amazon 2
altlinux 3
openvas 25
slackware 1
redhat 7
rocky 2
osv 26
almalinux 2
fedora 6
mageia 2
gentoo 1
nvd 4
debiancve 4
alpinelinux 3
ubuntucve 5
mariadbunix 6
veracode 5
vulnrichment 4
prion 5
cvelist 6
cve 6
redhatcve 6
f5 1
ubuntu 1
freebsd 1
ibm 3
nessus
nessus
NewStart CGSL CORE 5.05 / MAIN 5.05 : mariadb Multiple Vulnerabilities (NS-SA-2021-0162)
2021-10-28 00:00:00
RHEL 7 : mariadb (RHSA-2020:4026)
2020-09-29 00:00:00
CentOS 7 : mariadb (CESA-2020:4026)
2020-10-20 00:00:00
centos
centos
mariadb security update
2020-10-20 18:30:49
oraclelinux
oraclelinux
mariadb security and bug fix update
2020-10-06 00:00:00
mariadb:10.3 security, bug fix, and enhancement update
2020-12-18 00:00:00
mariadb-connector-c security, bug fix, and enhancement update
2020-12-18 00:00:00
amazon
amazon
Important: mariadb
2020-10-22 18:28:00
Medium: mysql56
2020-07-27 23:14:00
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version 10.1.46-alt1
2020-09-15 00:00:00
Security fix for the ALT Linux 9 package mariadb version 10.4.13-alt1
2020-07-02 00:00:00
Security fix for the ALT Linux 9 package mariadb version 10.4.12-alt1
2020-02-21 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:1798-1)
2021-04-19 00:00:00
Slackware: Security Advisory (SSA:2020-133-01)
2022-04-21 00:00:00
Huawei EulerOS: Security Advisory for mariadb (EulerOS-SA-2021-1815)
2021-05-03 00:00:00
slackware
slackware
[slackware-security] mariadb
2020-05-13 00:12:02
redhat
redhat
(RHSA-2020:5654) Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-22 08:27:07
(RHSA-2020:5665) Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-22 08:57:51
(RHSA-2020:5500) Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-15 16:03:43
rocky
rocky
mariadb:10.3 security, bug fix, and enhancement update
2020-12-15 16:03:43
mariadb-connector-c security, bug fix, and enhancement update
2020-12-15 16:04:12
osv
osv
Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-15 16:03:43
Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-15 16:03:43
BIT-2021-2144
2023-11-06 07:31:57
almalinux
almalinux
Important: mariadb:10.3 security, bug fix, and enhancement update
2020-12-15 16:03:43
Moderate: mariadb-connector-c security, bug fix, and enhancement update
2020-12-15 16:04:12
fedora
fedora
[SECURITY] Fedora 32 Update: mariadb-connector-c-3.1.8-1.fc32
2020-06-16 01:32:44
[SECURITY] Fedora 32 Update: galera-26.4.4-2.fc32
2020-06-16 01:32:43
[SECURITY] Fedora 31 Update: galera-25.3.31-1.fc31
2020-11-11 01:32:31
mageia
mageia
Updated mariadb packages fix security vulnerability
2020-07-07 14:13:48
Updated mariadb packages fix security vulnerability
2020-01-30 21:28:34
gentoo
gentoo
MariaDB: Multiple vulnerabilities
2020-12-07 00:00:00
nvd
nvd
CVE-2021-2144
2021-04-22 22:15:12
CVE-2019-2974
2019-10-16 18:15:32
CVE-2020-2574
2020-01-15 17:15:18
debiancve
debiancve
CVE-2019-2974
2019-10-16 18:15:32
CVE-2021-2144
2021-04-22 22:15:12
CVE-2020-2574
2020-01-15 17:15:18
alpinelinux
alpinelinux
CVE-2019-2974
2019-10-16 18:15:32
CVE-2020-2574
2020-01-15 17:15:18
CVE-2020-2812
2020-04-15 14:15:28
ubuntucve
ubuntucve
CVE-2019-2974
2019-10-16 00:00:00
CVE-2021-2144
2021-04-22 00:00:00
CVE-2020-2574
2020-01-15 00:00:00
mariadbunix
mariadbunix
CVE-2019-2974
2019-10-16 18:15:32
CVE-2021-2144
2021-04-22 22:15:00
CVE-2020-2574
2020-01-15 17:15:00
veracode
veracode
Denial Of Service (DoS)
2020-08-20 02:25:41
Privilege Escalation
2021-04-24 21:57:45
Denial Of Service (DoS)
2020-08-06 21:34:43
vulnrichment
vulnrichment
CVE-2019-2974
2019-10-16 17:40:57
CVE-2021-2144
2021-04-22 21:53:44
CVE-2020-2574
2020-01-15 16:34:01
prion
prion
Code injection
2021-04-22 22:15:00
Code injection
2019-10-16 18:15:00
Design/Logic Flaw
2020-01-15 17:15:00
cvelist
cvelist
CVE-2021-2144
2021-04-22 21:53:44
CVE-2019-2974
2019-10-16 17:40:57
CVE-2020-2574
2020-01-15 16:34:01
cve
cve
CVE-2021-2144
2021-04-22 22:15:12
CVE-2019-2974
2019-10-16 18:15:32
CVE-2020-2574
2020-01-15 17:15:18
redhatcve
redhatcve
CVE-2021-2144
2021-04-20 20:26:42
CVE-2019-2974
2020-04-06 17:02:25
CVE-2020-2574
2020-04-02 20:13:14
f5
f5
K23630542 : MySQL vulnerabilities CVE-2017-3636, CVE-2018-3081, CVE-2018-3174, CVE-2021-2144, and CVE-2020-2812
2022-01-18 00:00:00
ubuntu
ubuntu
MariaDB vulnerability
2020-02-06 00:00:00
freebsd
freebsd
MariaDB -- Vulnerability in C API
2020-01-28 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
2021-01-27 00:05:57
Security Bulletin: IBM API Connect is impacted by a denial of service vulnerability in MySQL (CVE-2020-2752)
2020-08-03 20:30:26
Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
2021-01-27 00:04:50

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.009

Percentile

82.5%

JSON
Related for RHSA-2020:4026
nessus58centos1oraclelinux3amazon2altlinux3openvas25slackware1redhat7rocky2osv26almalinux2fedora6mageia2gentoo1nvd4debiancve4alpinelinux3ubuntucve5mariadbunix6veracode5vulnrichment4prion5cvelist6cve6redhatcve6f51ubuntu1freebsd1ibm3