Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE MariaDB Critical Security Fix 12 Vulnerabilities 2026-2330-1

suse
Calendar Grey June 10, 2026
Dist Suse Esm H88
Critical security update for MariaDB on SUSE resolves 12 vulnerabilities. Install recommended patches immediately.
An update that solves 12 vulnerabilities can now be installed.

Summary

## This update for mariadb fixes the following issues: * CVE-2026-3494: audit plugin comment handling bypass (bsc#1259176). * CVE-2026-34303: mysql: optimizer unspecified vulnerability (bsc#1266435). * CVE-2026-35549: SHA2 auth plugin crash on large packets (bsc#1261413). * CVE-2026-44168: wsrep SST unsafe parameter handling on the donor side (bsc#1266442). * CVE-2026-44169: authorization bypass in role-based routine-level privilege check exposes stored routine definitions (bsc#1266441). * CVE-2026-44170: argument injection in CONNECT REST Xcurl on Windows via unsanitized URL (bsc#1266440). * CVE-2026-44171: path traversal in mbstream (bsc#1266439). * CVE-2026-44172: mysql_real_escape_string() incorrectly handled big5 (bsc#1266438).

Topics%20covered

Topics Covered

security advisory critical SuSE unsafe handling MariaDB install issue

References

* bsc#1259176

* bsc#1261413

* bsc#1266435

* bsc#1266437

* bsc#1266438

* bsc#1266439

* bsc#1266440

* bsc#1266441

* bsc#1266442

* bsc#1266814

* bsc#1266815

* bsc#1267542

Cross-

* CVE-2026-34303

* CVE-2026-3494

* CVE-2026-35549

* CVE-2026-44168

* CVE-2026-44169

* CVE-2026-44170

* CVE-2026-44171

* CVE-2026-44172

* CVE-2026-44173

* CVE-2026-48163

* CVE-2026-48165

* CVE-2026-49261

CVSS scores:

* CVE-2026-34303 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2026-3494 ( SUSE ): 5.3

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

* CVE-2026-3494 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

* CVE-2026-3494 ( NVD ): 5.3

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:2330-1
Release Date: 2026-06-10T07:39:59Z
Rating: critical

Topics%20covered

Topics Covered

security advisory critical SuSE unsafe handling MariaDB install issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here