Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 510
Alerts This Week
Warning Icon 1 510

SUSE Linux: 2020:3500-1 Moderate: MariaDB Security Update

suse
Calendar Grey November 24, 2020
Dist Suse Esm H88
SUSE Security Update: Security update for mariadb __________________________________________________
An update that fixes 5 vulnerabilities is now available

Summary

This update for mariadb and mariadb-connector-c fixes the following issues: - Update mariadb to 10.2.36 GA [bsc#1177472, bsc#1178428] fixing for the following security vulnerabilities: CVE-2020-14812, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789 CVE-2020-15180 - Update mariadb-connector-c to 3.1.11 [bsc#1177472 and bsc#1178428] Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2020-3500=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2020-3500=1

References

#1175596 #1177472 #1178428

Cross- CVE-2020-14765 CVE-2020-14776 CVE-2020-14789

CVE-2020-14812 CVE-2020-15180

Affected Products:

SUSE Linux Enterprise Server for SAP 15

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Module for Server Applications 15-SP2

SUSE Linux Enterprise Module for Server Applications 15-SP1

SUSE Linux Enterprise Module for Basesystem 15-SP2

SUSE Linux Enterprise Module for Basesystem 15-SP1

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise High Performance Computing 15-ESPOS

https://www.suse.com/security/cve/CVE-2020-14765.html

https://www.suse.com/security/cve/CVE-2020-14776.html

https://www.suse.com/security/cve/CVE-2020-14789.html

https://www.suse.com/security/cve/CVE-2020-14812.html

Announcement ID: SUSE-SU-2020:3500-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.