SUSE: 2019:0609-1 Moderate: Security Fix for MariaDB DoS Vulnerability
suse
March 14, 2019
An update that solves two vulnerabilities and has two fixes is now available
Summary
This update for mariadb to version 10.2.22 fixes the following issues: Security issues fixed (bsc#1122198): - CVE-2019-2510: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service. - CVE-2019-2537: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service. Other issues fixed: - Fixed an issue where mysl_install_db fails due to incorrect basedir (bsc#1127027). - Fixed an issue where the lograte was not working (bsc#1112767). - Backport Information Schema CHECK_CONSTRAINTS Table. - Maximum value of table_definition_cache is now 2097152. - InnoDB ALTER TABLE fixes. - Galera crash recovery fixes. - Encryption fixes. - Remove xtrabackup dependency as MariaDB ships a build in mariabackup so xtrabackup is not needed (bsc#1122475).
Topics Covered
References
#1112767 #1122198 #1122475 #1127027
Cross- CVE-2019-2510 CVE-2019-2537
Affected Products:
SUSE Linux Enterprise Server 12-SP4
SUSE Linux Enterprise Desktop 12-SP4
https://www.suse.com/security/cve/CVE-2019-2510.html
https://www.suse.com/security/cve/CVE-2019-2537.html
https://bugzilla.suse.com/1112767
https://bugzilla.suse.com/1122198
https://bugzilla.suse.com/1122475
https://bugzilla.suse.com/1127027
PREVIOUS
NEXT
Announcement ID: SUSE-SU-2019:0609-1
Rating: moderate
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!