Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 428
Alerts This Week
Warning Icon 1 428

SUSE 12: 2017:2034-1 Important: MariaDB DoS Fixes Available

suse
Calendar Grey August 3, 2017
Dist Suse Esm H88
SUSE has issued a security enhancement for PostgreSQL that addresses several severe vulnerabilities. It's essential to keep your installations current to uphold security integrity.
An update that fixes 5 vulnerabilities is now available

Summary

This MariaDB update to version 10.0.31 GA fixes the following issues: Security issues fixed: - CVE-2017-3308: Subcomponent: Server: DML: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) - CVE-2017-3309: Subcomponent: Server: Optimizer: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715)

References

#1048715

Cross- CVE-2017-3308 CVE-2017-3309 CVE-2017-3453

CVE-2017-3456 CVE-2017-3464

Affected Products:

SUSE Linux Enterprise Server for SAP 12

SUSE Linux Enterprise Server 12-LTSS

https://www.suse.com/security/cve/CVE-2017-3308.html

https://www.suse.com/security/cve/CVE-2017-3309.html

https://www.suse.com/security/cve/CVE-2017-3453.html

https://www.suse.com/security/cve/CVE-2017-3456.html

https://www.suse.com/security/cve/CVE-2017-3464.html

https://bugzilla.suse.com/1048715

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2034-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.