RLSA-2023:5259

See a problem?
Please try reporting it to the source first.
Source
https://errata.rockylinux.org/RLSA-2023:5259
Import Source
https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json
JSON Data
https://api.test.osv.dev/v1/vulns/RLSA-2023:5259
Upstream
Published
2025-12-27T09:04:03.511459Z
Modified
2025-12-27T09:29:53.960798Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Moderate: mariadb:10.3 security, bug fix, and enhancement update
Details

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

The following packages have been upgraded to a later upstream version: mariadb (10.3). (BZ#2223572, BZ#2223574, BZ#2223962, BZ#2223965)

Security Fix(es):

  • mariadb: segmentation fault via the component sub_select (CVE-2022-32084)

  • mariadb: server crash in JOINCACHE::free or in copyfields (CVE-2022-32091)

  • mariadb: compress_write() fails to release mutex on failure (CVE-2022-38791)

  • mariadb: NULL pointer dereference in spiderdbmbase::print_warnings() (CVE-2022-47015)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • [MariaDB 10.3.32] socat: E Failed to set SNI host "" (SST failure) (BZ#2223961)
References
Credits
    • Rocky Enterprise Software Foundation
    • Red Hat

Affected packages

Rocky Linux:8
galera

Package

Name
galera
Purl
pkg:rpm/rocky-linux/galera?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:25.3.37-1.module+el8.8.0+1452+2a7eab68
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"
Judy

Package

Name
Judy
Purl
pkg:rpm/rocky-linux/Judy?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:1.0.5-18.module+el8.4.0+427+adf35707
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"
Judy

Package

Name
Judy
Purl
pkg:rpm/rocky-linux/Judy?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:1.0.5-18.module+el8.10.0+1674+fa55eae9
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"
Judy

Package

Name
Judy
Purl
pkg:rpm/rocky-linux/Judy?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:1.0.5-18.module+el8.10.0+1925+356c22e8
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"
Judy

Package

Name
Judy
Purl
pkg:rpm/rocky-linux/Judy?distro=rocky-linux-8&epoch=0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0:1.0.5-18.module+el8.4.0+431+26aaed18
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"
mariadb

Package

Name
mariadb
Purl
pkg:rpm/rocky-linux/mariadb?distro=rocky-linux-8&epoch=3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3:10.3.39-1.module+el8.8.0+1452+2a7eab68
Database specific 
{
    "yum_repository": "AppStream"
}

Database specific

source 
"https://storage.googleapis.com/resf-osv-data/RLSA-2023:5259.json"