CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
82.5%
MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.
The following packages have been upgraded to a later upstream version: mariadb (5.5.68). (BZ#1769276)
Security Fix(es):
mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2974)
mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752)
mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)
mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)
mysql: C API: unspecified vulnerability (CPU Jan 2020) (CVE-2020-2574)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | x86_64 | mariadb | < 5.5.68-1.el7 | mariadb-5.5.68-1.el7.x86_64.rpm |
RedHat | 7 | s390 | mariadb-debuginfo | < 5.5.68-1.el7 | mariadb-debuginfo-5.5.68-1.el7.s390.rpm |
RedHat | 7 | ppc | mariadb-libs | < 5.5.68-1.el7 | mariadb-libs-5.5.68-1.el7.ppc.rpm |
RedHat | 7 | x86_64 | mariadb-debuginfo | < 5.5.68-1.el7 | mariadb-debuginfo-5.5.68-1.el7.x86_64.rpm |
RedHat | 7 | ppc64le | mariadb-debuginfo | < 5.5.68-1.el7 | mariadb-debuginfo-5.5.68-1.el7.ppc64le.rpm |
RedHat | 7 | s390x | mariadb-server | < 5.5.68-1.el7 | mariadb-server-5.5.68-1.el7.s390x.rpm |
RedHat | 7 | s390x | mariadb-test | < 5.5.68-1.el7 | mariadb-test-5.5.68-1.el7.s390x.rpm |
RedHat | 7 | s390 | mariadb-devel | < 5.5.68-1.el7 | mariadb-devel-5.5.68-1.el7.s390.rpm |
RedHat | 7 | ppc64 | mariadb-server | < 5.5.68-1.el7 | mariadb-server-5.5.68-1.el7.ppc64.rpm |
RedHat | 7 | x86_64 | mariadb-devel | < 5.5.68-1.el7 | mariadb-devel-5.5.68-1.el7.x86_64.rpm |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
82.5%