Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

openSUSE Leap 42.3: Advisory 2018:2293-1 Moderate: mysql DoS Threat

opensuse
Calendar Grey August 10, 2018
Dist Opensuse Esm H88
A recent openSUSE security patch for postgresql-server addresses 9 vulnerabilities, significantly improving overall system safety.
An update that fixes 8 vulnerabilities is now available.

Description

This update for mysql-community-server to version 5.6.41 fixes the

following issues:

Security vulnerabilities fixed:

- CVE-2018-3064: Fixed an easily exploitable vulnerability that allowed a

low privileged attacker with network access via multiple protocols to

compromise the MySQL Server. Successful attacks of this vulnerability

can result in unauthorized ability to cause a hang or frequently

repeatable crash (complete DOS) of MySQL Server as well as unauthorized

update, insert or delete access to some of MySQL Server accessible data.

(bsc#1103342)

- CVE-2018-3070: Fixed an easily exploitable vulnerability that allowed a

low privileged attacker with network access via multiple protocols to

compromise MySQL Server. Successful attacks of this vulnerability can

result in unauthorized ability to cause a hang or frequently repeatable

crash (complete DOS) of MySQL Server. (bsc#1101679)

- CVE-2018-0739: Fixed a stack...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate update software patch DoS openSUSE mysql-server

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.3:

zypper in -t patch openSUSE-2018-844=1

Package List

- openSUSE Leap 42.3 (i586 x86_64):

libmysql56client18-5.6.41-39.1

libmysql56client18-debuginfo-5.6.41-39.1

libmysql56client_r18-5.6.41-39.1

mysql-community-server-5.6.41-39.1

mysql-community-server-bench-5.6.41-39.1

mysql-community-server-bench-debuginfo-5.6.41-39.1

mysql-community-server-client-5.6.41-39.1

mysql-community-server-client-debuginfo-5.6.41-39.1

mysql-community-server-debuginfo-5.6.41-39.1

mysql-community-server-debugsource-5.6.41-39.1

mysql-community-server-test-5.6.41-39.1

mysql-community-server-test-debuginfo-5.6.41-39.1

mysql-community-server-tools-5.6.41-39.1

mysql-community-server-tools-debuginfo-5.6.41-39.1

- openSUSE Leap 42.3 (x86_64):

libmysql56client18-32bit-5.6.41-39.1

libmysql56client18-debuginfo-32bit-5.6.41-39.1

libmysql56client_r18-32bit-5.6.41-39.1

- openSUSE Leap 42.3 (noarch):

mysql-community-server-errormessages-5.6.41-39.1

References

https://www.suse.com/security/cve/CVE-2018-0739.html

https://www.suse.com/security/cve/CVE-2018-2767.html

https://www.suse.com/security/cve/CVE-2018-3058.html

https://www.suse.com/security/cve/CVE-2018-3062.html

https://www.suse.com/security/cve/CVE-2018-3064.html

https://www.suse.com/security/cve/CVE-2018-3066.html

https://www.suse.com/security/cve/CVE-2018-3070.html

https://www.suse.com/security/cve/CVE-2018-3081.html

https://bugzilla.suse.com/1087102

https://bugzilla.suse.com/1088681

https://bugzilla.suse.com/1101676

https://bugzilla.suse.com/1101678

https://bugzilla.suse.com/1101679

https://bugzilla.suse.com/1101680

https://bugzilla.suse.com/1103342

https://bugzilla.suse.com/1103344

--

Announcement ID: openSUSE-SU-2018:2293-1
Rating: moderate
Affected Products: openSUSE Leap 42.3

Topics%20covered

Topics Covered

security advisory moderate update software patch DoS openSUSE mysql-server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here