Fedora 28: 2018-2513b888a4 Critical: MariaDB Security Patch
fedora
June 20, 2018
**MariaDB 10.2.15** Release notes: https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-2-series/mariadb-10215-release-notes CVEs fixed: CV...
Summary
MariaDB is a community developed branch of MySQL.
MariaDB is a multi-user, multi-threaded SQL database server.
It is a client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MariaDB/MySQL client programs and generic MySQL files.
**MariaDB 10.2.15** Release notes:
https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-2-series/mariadb-10215-release-notes CVEs fixed:
CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2771 CVE-2018-2781
CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817
CVE-2018-2819 CVE-2018-2786 CVE-2018-2759 CVE-2018-2777 CVE-2018-2810 New
features: * Now builds with lz4 support Enhacements: * mysqladmin is now used
to check the socket when the daemon is starting issues: * Please note, that
TokuDB storage engine is being build in a unsupported way - without jemalloc. it
will remain this way, until TokuDB is fixed to be able to build and run with
jemalloc 5 or witout jemalloc at all.
* Tue Jun 5 2018 Honza Horak
- Use mysqladmin for checking the socket
- Jemalloc dependency moved to the TokuDB subpackage.
CMake jemalloc option removed, not used anymore.
The server doesn't need jemalloc since 10.2: https://jira.mariadb.org/browse/MDEV-11059
- Build MariaDB with TokuDB without Jemalloc.
* Wed May 23 2018 Michal Schorm
- Rebase to 10.2.15
- CVEs fixed: #1568962
CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2771 CVE-2018-2781
CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817
CVE-2018-2819 CVE-2018-2786 CVE-2018-2759 CVE-2018-2777 CVE-2018-2810
[ 1 ] Bug #1584466 - mariadb update fails blocked by mariadb-tokudb-engine
https://bugzilla.redhat.com/show_bug.cgi?id=1584466
[ 2 ] Bug #1568962 - CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2771 CVE-2018-2773 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2818 CVE-2018-2819 mariadb: various flaws [fedora-27]
https://bugzilla.redhat.com/show_bug.cgi?id=1568962
[ 3 ] Bug #1568935 - MariaDB bundles rocksdb
https://bugzilla.redhat.com/show_bug.cgi?id=1568935
su -c 'dnf upgrade --advisory FEDORA-2018-2513b888a4' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URT2E3H3SHHUPWOZR3UMN3DFK7WUGAYI/
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Product: Fedora 28
Version: 10.2.15
Release: 2.fc28
URL: http://mariadb.org
Summary: A community developed branch of MySQL
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!