Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 488
Alerts This Week
Warning Icon 1 488

SUSE: 2017:0408-1 Critical Update: MySQL Security Vulnerabilities

suse
Calendar Grey February 7, 2017
Dist Suse Esm H88
SUSE Security Patch: Resolving 10 vulnerabilities in postgresql; guarantees secure functions for impacted systems.
An update that solves 10 vulnerabilities and has two fixes An update that solves 10 vulnerabilities and has two fixes An update that solves 10 vulnerabilities and has two fixes is ...

Summary

This mysql version update to 5.5.54 fixes the following issues: - CVE-2017-3318: Unspecified vulnerability affecting Error Handling (bsc#1020896) - CVE-2017-3317: Unspecified vulnerability affecting Logging (bsc#1020894) - CVE-2017-3313: Unspecified vulnerability affecting the MyISAM component (bsc#1020890) - CVE-2017-3312: Insecure error log file handling in mysqld_safe, incomplete CVE-2016-6664 (bsc#1020873) - CVE-2017-3291: Unrestricted mysqld_safe's ledir (bsc#1020884) - CVE-2017-3265: Unsafe chmod/chown use in init script (bsc#1020885) - CVE-2017-3258: Unspecified vulnerability in the DDL component (bsc#1020875) - CVE-2017-3244: Unspecified vulnerability affecing the DML component (bsc#1020877) - CVE-2017-3243: Unspecified vulnerability affecting the Charsets

References

#1020868 #1020873 #1020875 #1020877 #1020882

#1020884 #1020885 #1020890 #1020891 #1020894

#1020896 #1022428

Cross- CVE-2017-3238 CVE-2017-3243 CVE-2017-3244

CVE-2017-3258 CVE-2017-3265 CVE-2017-3291

CVE-2017-3312 CVE-2017-3313 CVE-2017-3317

CVE-2017-3318

Affected Products:

SUSE OpenStack Cloud 5

SUSE Manager Proxy 2.1

SUSE Manager 2.1

SUSE Linux Enterprise Software Development Kit 11-SP4

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Server 11-SP3-LTSS

SUSE Linux Enterprise Point of Sale 11-SP3

SUSE Linux Enterprise Debuginfo 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP3

https://www.suse.com/security/cve/CVE-2017-3238.html

https://www.suse.com/security/cve/CVE-2017-3243.html

https://www.suse.c...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:0408-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.