MGASA-2017-0054
- Source
- https://advisories.mageia.org/MGASA-2017-0054.html
- Import Source
- https://advisories.mageia.org/MGASA-2017-0054.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2017-0054
- Related
- Published
- 2017-02-20T13:00:19Z
- Modified
- 2017-02-20T09:20:06Z
- Summary
- Updated mariadb packages fix security vulnerability
- Details
-
Root Privilege Escalation (CVE-2016-6664).
Unspecified vulnerability affecting the Optimizer component (CVE-2017-3238).
Unspecified vulnerability affecting the Charsets component (CVE-2017-3243).
Unspecified vulnerability affecing the DML component (CVE-2017-3244).
Unspecified vulnerability affecting InnoDB (CVE-2017-3257).
Unspecified vulnerability in the DDL component (CVE-2017-3258).
Unsafe chmod/chown use in init script (CVE-2017-3265).
Unrestricted mysqld_safe's ledir (CVE-2017-3291).
Insecure error log file handling in mysqld_safe, due to an incomplete fix for CVE-2016-6664 (CVE-2017-3312).
Unspecified vulnerability affecting Logging (CVE-2017-3317).
Unspecified vulnerability affecting Error Handling (CVE-2017-3318).
Applications using the client library for MySQL (libmysqlclient.so) had a use-after-free issue that could cause the applications to crash (bsc#1022428).
- References
-
- https://advisories.mageia.org/MGASA-2017-0054.html
- https://bugs.mageia.org/show_bug.cgi?id=20139
- https://mariadb.com/kb/en/mariadb/mariadb-10029-release-notes/
- http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
- https://lists.opensuse.org/opensuse-updates/2017-02/msg00074.html
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:5 / mariadb
Package
- Name
- mariadb
- Purl
- pkg:rpm/mageia/mariadb?distro=mageia-5