Mageia: MGASA-2019-0147 Critical: MariaDB Denial of Service Issues
mageia
April 10, 2019
Vulnerability in the MariaDB Server component of MariaDB (subcomponent: Server: Optimizer)
Summary
Vulnerability in the MariaDB Server component of MariaDB (subcomponent: Server:
Optimizer). Easily exploitable vulnerability allows low privileged attacker
with network access via multiple protocols to compromise MariaDB Server.
Successful attacks of this vulnerability can result in unauthorized ability to
cause a hang or frequently repeatable crash (complete DOS) of MariaDB Server
(CVE-2019-2529).
Vulnerability in the MariaDB Server component of MariaDB (subcomponent: Server:
DDL). Easily exploitable vulnerability allows high privileged attacker with
network access via multiple protocols to compromise MariaDB Server. Successful
attacks of this vulnerability can result in unauthorized ability to cause a
hang or frequently repeatable crash (complete DOS) of MariaDB Server
(CVE-2019-2537).
References
- https://bugs.mageia.org/show_bug.cgi?id=24624
- https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-1-series/mariadb-10138-release-notes
- https://www.oracle.com/security-alerts/cpujan2019.html
- https://www.cve.org/CVERecord?id=CVE-2019-2529
- https://www.cve.org/CVERecord?id=CVE-2019-2537
Topics Covered
Resolution
SRPMS
- 6/core/mariadb-10.1.38-1.mga6
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 10 Apr 2019
URL: https://advisories.mageia.org/MGASA-2019-0147.html
Type: security
CVE: CVE-2019-2529,
CVE-2019-2537
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!