Mageia 2019-0335: mariadb security update

    Date19 Nov 2019
    CategoryMageia
    218
    Posted ByLinuxSecurity Advisories
    Updated mariadb packages fix security vulnerabilities: A vulnerability in Server: Optimizer contains an easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise the server. Successful attacks of this
    MGASA-2019-0335 - Updated mariadb packages fix security vulnerabilities
    
    Publication date: 19 Nov 2019
    URL: https://advisories.mageia.org/MGASA-2019-0335.html
    Type: security
    Affected Mageia releases: 7
    CVE: CVE-2019-2974,
         CVE-2019-2938
    
    Updated mariadb packages fix security vulnerabilities:
    
    A vulnerability in Server: Optimizer contains an easily exploitable
    vulnerability allows low privileged attacker with network access via
    multiple protocols to compromise the server. Successful attacks of this
    vulnerability can result in unauthorized ability to cause a hang or
    frequently repeatable crash (complete DOS) (CVE-2019-2974).
    
    A vulnerability in InnoDB contains an Difficult to exploit vulnerability
    allows high privileged attacker with network access via multiple protocols
    to compromise the server. Successful attacks of this vulnerability can
    result in unauthorized ability to cause a hang or frequently repeatable
    crash (complete DOS) (CVE-2019-2938).
    
    References:
    - https://bugs.mageia.org/show_bug.cgi?id=25691
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2974
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2938
    
    SRPMS:
    - 7/core/mariadb-10.3.20-1.mga7
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the LinuxSecurity Privacy news articles?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/25-what-do-you-think-of-the-linuxsecurity-privacy-news-articles?task=poll.vote&format=json
    25
    radio
    [{"id":"90","title":"Love them!","votes":"5","type":"x","order":"1","pct":100,"resources":[]},{"id":"91","title":"I'm indifferent","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"92","title":"Not interested in this topic","votes":"0","type":"x","order":"3","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.