Red Hat: RHSA-2020-5500-01 Important: MariaDB Code Injection Threat

red hat

December 15, 2020

An update for the mariadb:10.3 module is now available for Red Hat Enterprise Linux 8

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the MariaDB server daemon (mysqld) will be restarted automatically.

Summary

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.
The following packages have been upgraded to a later upstream version: mariadb (10.3.27), galera (25.3.31). (BZ#1899082, BZ#1899086)
Security Fix(es):
* mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep (CVE-2020-15180)
* mysql: InnoDB unspecified vulnerability (CPU Oct 2019) (CVE-2019-2938)
* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2974)
* mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752)
* mysql: InnoDB unspecified vulnerability (CPU Apr 2020) (CVE-2020-2760)
* mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)
* mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)
* mysql: InnoDB unspecified vulnerability (CPU Apr 2020) (CVE-2020-2814)
* mariadb-connector-c: Improper validation of content in a OK packet received from server (CVE-2020-13249)
* mysql: Server: FTS unspecified vulnerability (CPU Oct 2020) (CVE-2020-14765)
* mysql: InnoDB unspecified vulnerability (CPU Oct 2020) (CVE-2020-14776)
* mysql: Server: FTS unspecified vulnerability (CPU Oct 2020) (CVE-2020-14789)
* mysql: Server: Locking unspecified vulnerability (CPU Oct 2020) (CVE-2020-14812)
* mysql: C API unspecified vulnerability (CPU Jan 2020) (CVE-2020-2574)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* FTBFS: -D_GLIBCXX_ASSERTIONS (BZ#1899009)
* Queries with entity_id IN ('1', '2', …, '70000') run much slower in MariaDB 10.3 than on MariaDB 10.1 (BZ#1899017)
* Cleanup race with wsrep_rsync_sst_tunnel may prevent full galera cluster bootstrap (BZ#1899021)
* There are undeclared file conflicts in several mariadb and mysql packages (BZ#1899077)

Topics Covered

security advisory security issue bug fix Red Hat Enterprise Linux important code injection database MariaDB MariaDB update

References

https://access.redhat.com/security/cve/CVE-2019-2938 https://access.redhat.com/security/cve/CVE-2019-2974 https://access.redhat.com/security/cve/CVE-2020-2574 https://access.redhat.com/security/cve/CVE-2020-2752 https://access.redhat.com/security/cve/CVE-2020-2760 https://access.redhat.com/security/cve/CVE-2020-2780 https://access.redhat.com/security/cve/CVE-2020-2812 https://access.redhat.com/security/cve/CVE-2020-2814 https://access.redhat.com/security/cve/CVE-2020-13249 https://access.redhat.com/security/cve/CVE-2020-14765 https://access.redhat.com/security/cve/CVE-2020-14776 https://access.redhat.com/security/cve/CVE-2020-14789 https://access.redhat.com/security/cve/CVE-2020-14812 https://access.redhat.com/security/cve/CVE-2020-15180 https://access.redhat.com/security/updates/classification/#important

Package List

Red Hat Enterprise Linux AppStream (v. 8):
Source: Judy-1.0.5-18.module+el8+2765+cfa4f87b.src.rpm galera-25.3.31-1.module+el8.3.0+8843+3f4e42f6.src.rpm mariadb-10.3.27-3.module+el8.3.0+8972+5e3224e9.src.rpm
aarch64: Judy-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm galera-25.3.31-1.module+el8.3.0+8843+3f4e42f6.aarch64.rpm galera-debuginfo-25.3.31-1.module+el8.3.0+8843+3f4e42f6.aarch64.rpm galera-debugsource-25.3.31-1.module+el8.3.0+8843+3f4e42f6.aarch64.rpm mariadb-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-backup-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-backup-debuginfo-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-common-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-debuginfo-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-debugsource-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-devel-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-embedded-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-embedded-debuginfo-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm mariadb-embedded-devel-10.3.27-3.module+el8.3.0+8972+5e3224e9.aarch64.rpm

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Advisory ID: RHSA-2020:5500-01

Product: Red Hat Enterprise Linux

Advisory URL: https://access.redhat.com/errata/RHSA-2020:5500

Issue date: 2020-12-15

Topic

An update for the mariadb:10.3 module is now available for Red HatEnterprise Linux 8.Red Hat Product Security has rated this update as having a security impactof Important. A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is available for each vulnerabilityfrom the CVE link(s) in the References section.

Topics Covered

security advisory security issue bug fix Red Hat Enterprise Linux important code injection database MariaDB MariaDB update

Relevant Releases Architectures

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

Bugs Fixed

1764680 - CVE-2019-2938 mysql: InnoDB unspecified vulnerability (CPU Oct 2019)

1764691 - CVE-2019-2974 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)

1798587 - CVE-2020-2574 mysql: C API unspecified vulnerability (CPU Jan 2020)

1830056 - CVE-2020-2780 mysql: Server: DML unspecified vulnerability (CPU Apr 2020)

1830059 - CVE-2020-2812 mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020)

1830060 - CVE-2020-2814 mysql: InnoDB unspecified vulnerability (CPU Apr 2020)

1830082 - CVE-2020-2760 mysql: InnoDB unspecified vulnerability (CPU Apr 2020)

1835849 - CVE-2020-2752 mysql: C API unspecified vulnerability (CPU Apr 2020)

1839827 - CVE-2020-13249 mariadb-connector-c: Improper validation of content in a OK packet received from server

1890738 - CVE-2020-14765 mysql: Server: FTS unspecified vulnerability (CPU Oct 2020)

1890743 - CVE-2020-14776 mysql: InnoDB unspecified vulnerability (CPU Oct 2020)

1890747 - CVE-2020-14789 mysql: Server: FTS unspecified vulnerability (CPU Oct 2020)

1890756 - CVE-2020-14812 mysql: Server: Locking unspecified vulnerability (CPU Oct 2020)

1894919 - CVE-2020-15180 mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep

1899009 - FTBFS: -D_GLIBCXX_ASSERTIONS [rhel-8.3.0.z]

1899017 - Queries with entity_id IN ('1', '2', …, '70000') run much slower in MariaDB 10.3 than on MariaDB 10.1 [rhel-8.3.0.z]

Read the Full Advisory

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Red Hat: RHSA-2020-5500-01 Important: MariaDB Code Injection Threat

Solution

Summary

Topics Covered

References

Package List

Topic

Topics Covered

Relevant Releases Architectures

Bugs Fixed

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Red Hat: RHSA-2020-5500-01 Important: MariaDB Code Injection Threat

Solution

Summary

Topics Covered

References

Package List

Topic

Topics Covered

Relevant Releases Architectures

Bugs Fixed

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!