Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
202
security advisorysoftware upgradeSQL injectionopenSUSE Leap 15.5 SUSE-SU-2024:0522-1 Important PostgreSQL13 Update
This update for postgresql13 fixes the following issues: Upgrade to 13.14:. # Security update for postgresql13 Announcement ID: SUSE-SU-2024:0522-1 Rating: important References: * bsc#1219679 Cross-References: * CVE-2024-0985 CVSS scores: * CVE-2024-0985 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-0985 ( NVD ): 8.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: * Galera for Ericsson 15 SP5 * openSUSE Leap 15.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for postgresql13 fixes the following issues: Upgrade to 13.14: * CVE-2024-0985: Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY (bsc#1219679). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP3-2024-522=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-522=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-522=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-522=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-522=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-522=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-522=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-522=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-522=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-522=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-522=1 * Galera for Ericsson 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-ERICSSON-2024-522=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-522=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-llvmjit-devel-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-llvmjit-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-llvmjit-debuginfo-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 *postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Enterprise Storage 7.1 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-llvmjit-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-llvmjit-debuginfo-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-llvmjit-devel-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-test-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * openSUSE Leap 15.5 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) *postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) *postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-llvmjit-devel-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-llvmjit-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-llvmjit-debuginfo-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-llvmjit-devel-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-llvmjit-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 *postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-llvmjit-debuginfo-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 *postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-llvmjit-devel-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-llvmjit-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-llvmjit-debuginfo-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * Galera for Ericsson 15 SP5 (x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 *postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * Galera for Ericsson 15 SP5 (noarch) * postgresql13-docs-13.14-150200.5.53.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * postgresql13-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-server-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-debuginfo-13.14-150200.5.53.1 * postgresql13-13.14-150200.5.53.1 * postgresql13-contrib-debuginfo-13.14-150200.5.53.1 * postgresql13-debuginfo-13.14-150200.5.53.1 * postgresql13-plperl-13.14-150200.5.53.1 * postgresql13-contrib-13.14-150200.5.53.1 * postgresql13-devel-13.14-150200.5.53.1 * postgresql13-pltcl-13.14-150200.5.53.1 * postgresql13-plperl-debuginfo-13.14-150200.5.53.1 * postgresql13-server-devel-13.14-150200.5.53.1 * postgresql13-plpython-debuginfo-13.14-150200.5.53.1 * postgresql13-pltcl-debuginfo-13.14-150200.5.53.1 * postgresql13-debugsource-13.14-150200.5.53.1 * postgresql13-server-13.14-150200.5.53.1 * postgresql13-plpython-13.14-150200.5.53.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * postgresql13-docs-13.14-150200.5.53.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0985.html * https://bugzilla.suse.com/show_bug.cgi?id=1219679 . This release tackles a vulnerability in mysql8 and includes comprehensive guidance for setup.. PostgreSQL Security,openSUSE Updates, Database Security, SUSE Linux Patch. . Severity: Important. LinuxSecurity.com Team
Feb 16, 2024
•Important
OpenSUSE
219
security advisorysecurity updatesecurity fixRocky Linux 9 RLSA-2023:4327 Moderate: PostgreSQL Security Fix
Moderate: postgresql:15 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:4327", "synopsis": "Moderate: postgresql:15 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for module.pgaudit, postgresql, pgaudit, module.pg_repack, module.postgres-decoderbufs, pg_repack, module.postgresql, postgres-decoderbufs.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PostgreSQL is an advanced object-relational database management system (DBMS).\n\nSecurity Fix(es):\n\n* postgresql: schema_element defeats protective search_path changes (CVE-2023-2454)\n\n* postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2207568", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2207568", "description": ""}, {"ticket": "2207569", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2207569", "description": ""}], "cves": [{"name": "CVE-2023-2454", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-2454", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.2", "cwe": "CWE-20"}, {"name": "CVE-2023-2455", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-2455", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N", "cvss3BaseScore": "4.2", "cwe": "CWE-20"}], "references": [], "publishedAt": "2023-08-08T12:35:00.861167Z", "rpms": {"Rocky Linux 9": {"nvras": ["pgaudit-0:1.7.0-1.module+el9.2.0+14925+a515b28a.aarch64.rpm","pgaudit-0:1.7.0-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pgaudit-0:1.7.0-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pgaudit-0:1.7.0-1.module+el9.2.0+14925+a515b28a.src.rpm", "pgaudit-0:1.7.0-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "pg_repack-0:1.4.8-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "pg_repack-0:1.4.8-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pg_repack-0:1.4.8-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pg_repack-0:1.4.8-1.module+el9.2.0+14925+a515b28a.src.rpm", "pg_repack-0:1.4.8-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "pg_repack-debuginfo-0:1.4.8-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "pg_repack-debuginfo-0:1.4.8-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pg_repack-debuginfo-0:1.4.8-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pg_repack-debuginfo-0:1.4.8-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "pg_repack-debugsource-0:1.4.8-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "pg_repack-debugsource-0:1.4.8-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "pg_repack-debugsource-0:1.4.8-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "pg_repack-debugsource-0:1.4.8-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.s390x.rpm","postgres-decoderbufs-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.src.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-0:15.3-1.module+el9.2.0+14925+a515b28a.src.rpm", "postgresql-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-contrib-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-contrib-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-contrib-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-contrib-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-contrib-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-contrib-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-contrib-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-contrib-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm","postgresql-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-debugsource-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-debugsource-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-debugsource-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-debugsource-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-docs-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-docs-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-docs-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-docs-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-docs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-docs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-docs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-docs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-plperl-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-plperl-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-plperl-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-plperl-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-plperl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-plperl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-plperl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-plperl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-plpython3-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-plpython3-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-plpython3-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-plpython3-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-plpython3-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm","postgresql-plpython3-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-plpython3-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-plpython3-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-pltcl-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-pltcl-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-pltcl-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-pltcl-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-pltcl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-pltcl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-pltcl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-pltcl-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-private-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-private-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-private-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-private-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-private-libs-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-private-libs-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-private-libs-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-private-libs-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-private-libs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-private-libs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-private-libs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-private-libs-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-server-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-server-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-server-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm","postgresql-server-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-server-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-server-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-server-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-server-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-server-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-server-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-server-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-server-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-server-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-server-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-server-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-server-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-static-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-static-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-static-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-static-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-test-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-test-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-test-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-test-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-test-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-test-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-test-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-test-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-test-rpm-macros-0:15.3-1.module+el9.2.0+14925+a515b28a.noarch.rpm","postgresql-upgrade-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-upgrade-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-upgrade-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-upgrade-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-upgrade-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-upgrade-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-upgrade-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-upgrade-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-upgrade-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-upgrade-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-upgrade-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-upgrade-devel-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm", "postgresql-upgrade-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.aarch64.rpm", "postgresql-upgrade-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.ppc64le.rpm", "postgresql-upgrade-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.s390x.rpm", "postgresql-upgrade-devel-debuginfo-0:15.3-1.module+el9.2.0+14925+a515b28a.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Essential update for MySQL on Rocky Linux 9, correcting significant vulnerabilities impacting shared server instances.. PostgreSQL Security, Rocky Linux Update, Database Fixes, Security Patches, PostgreSQL Management. . LinuxSecurity.com Team
Aug 08, 2023
Rocky Linux
98
security advisoryRed Hatred hatRed Hat Enterprise Linux 8.1 RHSA-2021-1241-01 Important: mariadb Risk
An update for the mariadb:10.3 and mariadb-devel:10.3 modules is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: mariadb:10.3 and mariadb-devel:10.3 security update Advisory ID: RHSA-2021:1241-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:1241 Issue date: 2021-04-19 CVE Names: CVE-2021-27928 ==================================================================== 1. Summary: An update for the mariadb:10.3 and mariadb-devel:10.3 modules is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder EUS (v. 8.1) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream EUS (v. 8.1) - aarch64, ppc64le, s390x, x86_64 3. Description: MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: mariadb (10.3.28), galera (25.3.32). Security Fix(es): * mariadb: writable system variables allows a database user with SUPER privilege to execute arbitrary code as the system mysql user (CVE-2021-27928) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details onhow to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, the MariaDB server daemon (mysqld) will be restarted automatically. 5. Bugs fixed (https://bugzilla.redhat.com/): 1940909 - CVE-2021-27928 mariadb: writable system variables allows a database user with SUPER privilege to execute arbitrary code as the system mysql user 6. Package List: Red Hat Enterprise Linux AppStream EUS (v.8.1): Source: Judy-1.0.5-18.module+el8+2765+cfa4f87b.src.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.src.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.src.rpm aarch64: Judy-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.aarch64.rpm galera-debuginfo-25.3.32-1.module+el8.1.0+10475+47ea4373.aarch64.rpm galera-debugsource-25.3.32-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-backup-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-backup-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-common-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-debugsource-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-embedded-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-embedded-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-embedded-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-errmsg-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-gssapi-server-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-gssapi-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-oqgraph-engine-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-oqgraph-engine-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-server-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-server-galera-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-server-utils-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-server-utils-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-test-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm mariadb-test-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.aarch64.rpm ppc64le: Judy-1.0.5-18.module+el8+2765+cfa4f87b.ppc64le.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.ppc64le.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.ppc64le.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm galera-debuginfo-25.3.32-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm galera-debugsource-25.3.32-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-backup-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-backup-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-common-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-debugsource-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-embedded-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-embedded-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-embedded-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-errmsg-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-gssapi-server-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-gssapi-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-oqgraph-engine-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-oqgraph-engine-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-server-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-server-galera-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-server-utils-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-server-utils-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-test-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm mariadb-test-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.ppc64le.rpm s390x: Judy-1.0.5-18.module+el8+2765+cfa4f87b.s390x.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.s390x.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.s390x.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.s390x.rpm galera-debuginfo-25.3.32-1.module+el8.1.0+10475+47ea4373.s390x.rpm galera-debugsource-25.3.32-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-backup-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-backup-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-common-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-debugsource-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-embedded-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-embedded-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-embedded-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-errmsg-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-gssapi-server-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-gssapi-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-oqgraph-engine-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-oqgraph-engine-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-server-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-server-galera-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-server-utils-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-server-utils-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-test-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm mariadb-test-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.s390x.rpm x86_64: Judy-1.0.5-18.module+el8+2765+cfa4f87b.x86_64.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.x86_64.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.x86_64.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.x86_64.rpm galera-debuginfo-25.3.32-1.module+el8.1.0+10475+47ea4373.x86_64.rpm galera-debugsource-25.3.32-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-backup-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-backup-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-common-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-debugsource-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-embedded-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-embedded-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-embedded-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-errmsg-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-gssapi-server-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-gssapi-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-oqgraph-engine-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-oqgraph-engine-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-server-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-server-galera-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-server-utils-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-server-utils-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-test-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm mariadb-test-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.x86_64.rpm Red Hat CodeReady Linux Builder EUS (v.8.1): Source: asio-1.10.8-7.module+el8+2765+cfa4f87b.src.rpm aarch64: Judy-devel-1.0.5-18.module+el8+2765+cfa4f87b.aarch64.rpm asio-devel-1.10.8-7.module+el8+2765+cfa4f87b.aarch64.rpm ppc64le: Judy-devel-1.0.5-18.module+el8+2765+cfa4f87b.ppc64le.rpm asio-devel-1.10.8-7.module+el8+2765+cfa4f87b.ppc64le.rpm s390x: Judy-devel-1.0.5-18.module+el8+2765+cfa4f87b.s390x.rpm asio-devel-1.10.8-7.module+el8+2765+cfa4f87b.s390x.rpm x86_64: Judy-1.0.5-18.module+el8+2765+cfa4f87b.i686.rpm Judy-debuginfo-1.0.5-18.module+el8+2765+cfa4f87b.i686.rpm Judy-debugsource-1.0.5-18.module+el8+2765+cfa4f87b.i686.rpm Judy-devel-1.0.5-18.module+el8+2765+cfa4f87b.i686.rpm Judy-devel-1.0.5-18.module+el8+2765+cfa4f87b.x86_64.rpm asio-devel-1.10.8-7.module+el8+2765+cfa4f87b.i686.rpm asio-devel-1.10.8-7.module+el8+2765+cfa4f87b.x86_64.rpm galera-25.3.32-1.module+el8.1.0+10475+47ea4373.i686.rpm galera-debuginfo-25.3.32-1.module+el8.1.0+10475+47ea4373.i686.rpm galera-debugsource-25.3.32-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-backup-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-backup-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-common-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-debugsource-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-embedded-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-embedded-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-embedded-devel-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-errmsg-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-gssapi-server-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-gssapi-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-oqgraph-engine-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-oqgraph-engine-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-server-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-server-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-server-galera-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-server-utils-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-server-utils-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-test-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm mariadb-test-debuginfo-10.3.28-1.module+el8.1.0+10475+47ea4373.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-27928 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYH1Us9zjgjWX9erEAQjCpg//UHuzQ2V9ehahsyW2afrPfCbc3c8iBBK8 R+0Cjn9Nso9O2Xdh0PSNFv1IR9o+CkC8BUtasmJu225Ve0K2YU1Qdan6jMXE3mnf 8svNvrNie09okQV4/vsY0dCDutY4+9zN1d/MZqqRH/2FgZsr5q8jcM0jyhoFQiMD FVXxsrw5pMpRe2kn5Bf8MFTyqtmQC6uXcFxKRyECo7c7JNpFe9wc9RL/NHGIfE5T GjTU82b/r6rUs19h9/5oK6P5XP4tZ8TGGXmk+W7VCMQ/XRaR+J226dsjD9oX/8tK FFSO7ahNgZXZZx6FNF6V/v+pWk6vgVEfxbhvethYi8OxlHCeZkYIh9H8GYSStIzc hzJrZLCprsr+tjN9X7KJWVaXAAOvmwZeZ0nVbhvyeafw5UDHBW0UQFPCs1zzgZhw 2HzqlU7lSvv5gPpUACs/J3uGsS6IkShZXy6JJ0sDWaKqnKb00Hz2kEVN0CdDChD/ ycs8S1WBjCcFhCC4OxwcNpC/XbBoTgmXPKw5kEVUEDTM+7qcUeT1/dxAAtHRX/Vx klWZocLuDIRwxlR7liuncMPLvTL0Dq03pXsyLUAEtfq9C64BK42a6wHXX8F+bAv3 dN8oa/+8/2yw+dMOBJ/aS9R2nyO0TDRUjdw1aCOdcRzvkoM9yMc47vT8Ai/6C7fC QbqiEzGhvDE=Q+FE -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 19, 2021
•Important
Red Hat
89
security advisoryhigh severityfedoraFedora 23: 2016-4cedbd4308 High Severity: MongoDB Security Fix
Security fix for CVE-2016-6494.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-4cedbd4308 2016-10-03 13:03:52.465836 -------------------------------------------------------------------------------- Name : mongodb Product : Fedora 23 Version : 3.0.12 Release : 2.fc23 URL : https://www.mongodb.com/ Summary : High-performance, schema-free document-oriented database Description : Mongo (from "humongous") is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the following features: * Collection oriented storage: easy storage of object/JSON-style data * Dynamic queries * Full index support, including on inner objects and embedded arrays * Query profiling * Replication and fail-over support * Efficient storage of binary data including large objects (e.g. photos and videos) * Auto-sharding for cloud-level scalability (currently in early alpha) * Commercial Support Available A key goal of MongoDB is to bridge the gap between key/value stores (which are fast and highly scalable) and traditional RDBMS systems (which are deep in functionality). -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6494. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1362553 - CVE-2016-6494 mongodb: world-readable .dbshell history file https://bugzilla.redhat.com/show_bug.cgi?id=1362553 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mongodb' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Oct 03, 2016
Fedora
89
security advisoryFedorasecurity fixFedora 22: 2016-868c170507 Moderate: MariaDB Security Update
This is an update to 10.0.23 that delivers also all fixes for CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4879, CVE-2015-4895, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0503, CVE-2016-0504, CVE-2016-0505, CVE-2016-0546,. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-868c170507 2016-03-05 18:25:11.095829 -------------------------------------------------------------------------------- Name : mariadb Product : Fedora 22 Version : 10.0.23 Release : 1.fc22 URL : http://mariadb.org Summary : A community developed branch of MySQL Description : MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and generic MySQL files. -------------------------------------------------------------------------------- Update Information: This is an update to 10.0.23 that delivers also all fixes for CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4879, CVE-2015-4895, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0503, CVE-2016-0504, CVE-2016-0505, CVE-2016-0546, CVE-2016-0594, CVE-2016-0595, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0599, CVE-2016-0600, CVE-2016-0601, CVE-2016-0605, CVE-2016-0606, CVE-2016-0607, CVE-2016-0608, CVE-2016-0609, CVE-2016-0610, CVE-2016-0611, CVE-2016-0616 (some of them were fixed in previous update already). -------------------------------------------------------------------------------- This update can be installed with the "yum" updateprogram. Use su -c 'yum update mariadb' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Mar 05, 2016
Fedora
89
security advisoryFedoradatabase patchFedora 21: 2015-10831 Moderate: SSL Enforcement Issue in MariaDB 10.0.20
This is an update to most recent version 10.0.20, that also fixes CVE-2015-3152.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-10831 2015-06-27 09:57:40 -------------------------------------------------------------------------------- Name : mariadb Product : Fedora 21 Version : 10.0.20 Release : 1.fc21 URL : http://mariadb.org Summary : A community developed branch of MySQL Description : MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and generic MySQL files. -------------------------------------------------------------------------------- Update Information: This is an update to most recent version 10.0.20, that also fixes CVE-2015-3152. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 23 2015 Honza Horak - 1:10.0.20-1 - Update to 10.0.20 * Wed Jun 3 2015 Dan Horák - 1:10.0.19-2 - Update lists of failing tests (jdornak) Related: #1149647 * Mon May 11 2015 Honza Horak - 1:10.0.19-1 - Update to 10.0.19 * Thu May 7 2015 Honza Horak - 1:10.0.18-1 - Update to 10.0.18 * Wed Mar 4 2015 Honza Horak - 1:10.0.17-1 - Rebase to version 10.0.17 * Wed Feb 18 2015 Matej Muzila - 1:10.0.16-3 - Enable tokudb * Tue Feb 10 2015 Honza Horak - 1:10.0.16-3 - Fix openssl_1 test * Wed Feb 4 2015 Jakub Dorňák - 1:10.0.16-2 - Include new certificate for tests - Update lists of failing tests Related: #1186110 * Tue Feb 3 2015 Jakub Dorňák - 1:10.0.16-9 - Rebase to version 10.0.16 Resolves: #1187895 * Tue Jan 6 2015 Honza Horak - 1:10.0.15-4 - Disable failing tests connect.mrr, connect.updelx2 on ppc and s390 * Mon Dec 22 2014 Honza Horak - 1:10.0.15-3 - Revert removing compatfiles, will do for F22 * Fri Dec 5 2014 Honza Horak - 1:10.0.15-2 - Rework usage of macros and remove some compatibility artefacts * Thu Nov 27 2014 Jakub Dorňák - 1:10.0.15-1 - Update to 10.0.15 * Thu Nov 20 2014 Jan Stanek - 1:10.0.14-8 - Applied upstream fix for mysql_config --cflags output. Resolves: #1160845 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217506 - CVE-2015-3152 mysql: use of SSL/TLS can not be enforced in mysql client library (oCERT-2015-003, BACKRONYM) https://bugzilla.redhat.com/show_bug.cgi?id=1217506 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mariadb' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Jul 10, 2015
•Important
Fedora
98
security advisorysecurity updatetemporary fileRed Hat Enterprise Linux 4 RHSA-2005:685-01 Low Level MySQL Flaw
Updated mysql packages that fix a temporary file flaw and a number of bugs are now available. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Low: mysql security update Advisory ID: RHSA-2005:685-01 Advisory URL: https://access.redhat.com/errata/RHSA-2005:685.html Issue date: 2005-10-05 Updated on: 2005-10-05 Product: Red Hat Enterprise Linux CVE Names: CAN-2005-1636 - ---------------------------------------------------------------------1. Summary: Updated mysql packages that fix a temporary file flaw and a number of bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. An insecure temporary file handling bug was found in the mysql_install_db script. It is possible for a local user to create specially crafted files in /tmp which could allow them to execute arbitrary SQL commands during database installation. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1636 to this issue. These packages update mysql to version 4.1.12, fixing a number of problems. Also, support for SSL-encrypted connections to the database server is now provided. All users of mysql are advised to upgrade to these updated packages. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have beenapplied. This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed (http://bugzilla.redhat.com/): 158688 - CAN-2005-1636 mysql insecure temporary file creation 163694 - Parser issue with subqueries involving unions 6. RPMs required: Red Hat Enterprise Linux AS version 4: SRPMS: 06e04af590c86c1563668213e4d9a2af mysql-4.1.12-3.RHEL4.1.src.rpm i386: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm 020b65a1397177687bd7455a2946739e mysql-bench-4.1.12-3.RHEL4.1.i386.rpm 6db5ab9c7b09d927988e39a9d53b8261 mysql-devel-4.1.12-3.RHEL4.1.i386.rpm 6694cc9ad90191d03cdc67ad9614d26c mysql-server-4.1.12-3.RHEL4.1.i386.rpm ia64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm bb35d80e1f827aa5de0f01aee29faa6a mysql-4.1.12-3.RHEL4.1.ia64.rpm 47cb300d4bf12c8563eb1c8babfd103b mysql-bench-4.1.12-3.RHEL4.1.ia64.rpm 47f9b68213f3037db70832795eb3a5b0 mysql-devel-4.1.12-3.RHEL4.1.ia64.rpm 0613e4169cee5ac1bde69212803b6aaa mysql-server-4.1.12-3.RHEL4.1.ia64.rpm ppc: b54a2d7a5a9029db69c3cf0307003f8d mysql-4.1.12-3.RHEL4.1.ppc.rpm 9d53cef62c768f37a223d90cafdfe4c4 mysql-4.1.12-3.RHEL4.1.ppc64.rpm 7a0d7f6729411842fbcab18a558c25f9 mysql-bench-4.1.12-3.RHEL4.1.ppc.rpm ff15dfca4f080127a684753711c2c705 mysql-devel-4.1.12-3.RHEL4.1.ppc.rpm 5e18e3db31abbd644f798537b505febd mysql-server-4.1.12-3.RHEL4.1.ppc.rpm s390: a4f9deb608170942ef88157f16bc9559 mysql-4.1.12-3.RHEL4.1.s390.rpm cf62bace4cd06dab150abd0571b6e927 mysql-bench-4.1.12-3.RHEL4.1.s390.rpm 54fa0f151e8322cfb0f677bbf3a0d618 mysql-devel-4.1.12-3.RHEL4.1.s390.rpm b302582504491c3fcdf496ed13b20c3f mysql-server-4.1.12-3.RHEL4.1.s390.rpm s390x: a4f9deb608170942ef88157f16bc9559 mysql-4.1.12-3.RHEL4.1.s390.rpm 6882bb7f89b988c796c5694c6e133921 mysql-4.1.12-3.RHEL4.1.s390x.rpm 7997f5fa03a7cb80c1e8da506f82a61f mysql-bench-4.1.12-3.RHEL4.1.s390x.rpm 0d61968abd9ae0d268ee77a7f893427e mysql-devel-4.1.12-3.RHEL4.1.s390x.rpm 18ff4f1f10b15f1446e3bac9d5f16aa0 mysql-server-4.1.12-3.RHEL4.1.s390x.rpm x86_64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm c93a847cf892e5b9ff0941221dc17891 mysql-4.1.12-3.RHEL4.1.x86_64.rpm d28e2f3914e10b19212b969193c20386 mysql-bench-4.1.12-3.RHEL4.1.x86_64.rpm c4bc3aa53d8f14d35c13f6bff7cd9d9c mysql-devel-4.1.12-3.RHEL4.1.x86_64.rpm c8426a10d3f2a56ccf30eae19dc78a01 mysql-server-4.1.12-3.RHEL4.1.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: SRPMS: 06e04af590c86c1563668213e4d9a2af mysql-4.1.12-3.RHEL4.1.src.rpm i386: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm 020b65a1397177687bd7455a2946739e mysql-bench-4.1.12-3.RHEL4.1.i386.rpm 6db5ab9c7b09d927988e39a9d53b8261 mysql-devel-4.1.12-3.RHEL4.1.i386.rpm 6694cc9ad90191d03cdc67ad9614d26c mysql-server-4.1.12-3.RHEL4.1.i386.rpm x86_64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm c93a847cf892e5b9ff0941221dc17891 mysql-4.1.12-3.RHEL4.1.x86_64.rpm d28e2f3914e10b19212b969193c20386 mysql-bench-4.1.12-3.RHEL4.1.x86_64.rpm c4bc3aa53d8f14d35c13f6bff7cd9d9c mysql-devel-4.1.12-3.RHEL4.1.x86_64.rpm c8426a10d3f2a56ccf30eae19dc78a01 mysql-server-4.1.12-3.RHEL4.1.x86_64.rpm Red Hat Enterprise Linux ES version 4: SRPMS: 06e04af590c86c1563668213e4d9a2af mysql-4.1.12-3.RHEL4.1.src.rpm i386: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm 020b65a1397177687bd7455a2946739e mysql-bench-4.1.12-3.RHEL4.1.i386.rpm 6db5ab9c7b09d927988e39a9d53b8261 mysql-devel-4.1.12-3.RHEL4.1.i386.rpm 6694cc9ad90191d03cdc67ad9614d26c mysql-server-4.1.12-3.RHEL4.1.i386.rpm ia64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm bb35d80e1f827aa5de0f01aee29faa6a mysql-4.1.12-3.RHEL4.1.ia64.rpm 47cb300d4bf12c8563eb1c8babfd103b mysql-bench-4.1.12-3.RHEL4.1.ia64.rpm 47f9b68213f3037db70832795eb3a5b0 mysql-devel-4.1.12-3.RHEL4.1.ia64.rpm 0613e4169cee5ac1bde69212803b6aaa mysql-server-4.1.12-3.RHEL4.1.ia64.rpm x86_64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm c93a847cf892e5b9ff0941221dc17891 mysql-4.1.12-3.RHEL4.1.x86_64.rpm d28e2f3914e10b19212b969193c20386 mysql-bench-4.1.12-3.RHEL4.1.x86_64.rpm c4bc3aa53d8f14d35c13f6bff7cd9d9c mysql-devel-4.1.12-3.RHEL4.1.x86_64.rpm c8426a10d3f2a56ccf30eae19dc78a01 mysql-server-4.1.12-3.RHEL4.1.x86_64.rpm Red Hat Enterprise Linux WS version 4: SRPMS: 06e04af590c86c1563668213e4d9a2af mysql-4.1.12-3.RHEL4.1.src.rpm i386: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm 020b65a1397177687bd7455a2946739e mysql-bench-4.1.12-3.RHEL4.1.i386.rpm 6db5ab9c7b09d927988e39a9d53b8261 mysql-devel-4.1.12-3.RHEL4.1.i386.rpm 6694cc9ad90191d03cdc67ad9614d26c mysql-server-4.1.12-3.RHEL4.1.i386.rpm ia64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm bb35d80e1f827aa5de0f01aee29faa6a mysql-4.1.12-3.RHEL4.1.ia64.rpm 47cb300d4bf12c8563eb1c8babfd103b mysql-bench-4.1.12-3.RHEL4.1.ia64.rpm 47f9b68213f3037db70832795eb3a5b0 mysql-devel-4.1.12-3.RHEL4.1.ia64.rpm 0613e4169cee5ac1bde69212803b6aaa mysql-server-4.1.12-3.RHEL4.1.ia64.rpm x86_64: d42c715e724da17f9e1bdd922fdb2f34 mysql-4.1.12-3.RHEL4.1.i386.rpm c93a847cf892e5b9ff0941221dc17891 mysql-4.1.12-3.RHEL4.1.x86_64.rpm d28e2f3914e10b19212b969193c20386 mysql-bench-4.1.12-3.RHEL4.1.x86_64.rpm c4bc3aa53d8f14d35c13f6bff7cd9d9c mysql-devel-4.1.12-3.RHEL4.1.x86_64.rpm c8426a10d3f2a56ccf30eae19dc78a01 mysql-server-4.1.12-3.RHEL4.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.cve.org/CVERecord?id=CAN-2005-1636 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2005 Red Hat, Inc. . MySQL modules refreshed to address minor vulnerabilities and issues. Update advised for enhanced protection and performance.. MySQL Security Update, Red Hat Advisory, Software Patch Recommendations, Database Update. . Severity: Low. LinuxSecurity.com Team
Oct 05, 2005
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!