Описание
ELSA-2022-1556: mariadb:10.3 security and bug fix update (MODERATE)
galera [25.3.34-4]
- Explicitly require the 'procps-ng' package
- Otherwise it will not require it in the lightweight systems (e.g. containers)
- and Galera won't work properly
[25.3.34-3]
- Use downstream garbd-wrapper and garbd.service to ensure compatibility
- Add upstream versions of garbd-wrapper (called garbd-systemd) and garbd.service in case user want's to use them
[ 25.3.34-2]
- Switch from SCONS build tooling to CMAKE build tooling
[25.3.34-1]
- Rebase to 25.3.34 Resolves: #2042298
mariadb [3:10.3.32-2.0.1]
- Fix changelog
[3:10.3.32-2]
- Add delaycompress option to the logrotate script
[3:10.3.32-1]
- Rebase to 10.3.32
[3:10.3.31-1]
- Rebase to 10.3.31
[3:10.3.30-1]
- Rebase to 10.3.30
[3:10.3.29-2]
- Set user_map.conf file to be noreplace config file
[3:10.3.29-1]
- Rebase to 10.3.29
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module mariadb:10.3 is enabled
Judy
1.0.5-18.0.1.module+el8.3.0+9616+7a81225f
galera
25.3.34-4.module+el8.5.0+20629+e1b20d6b
mariadb
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-backup
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-common
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-devel
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-embedded
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-embedded-devel
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-errmsg
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-gssapi-server
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-oqgraph-engine
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server-galera
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server-utils
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-test
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
Oracle Linux x86_64
Module mariadb:10.3 is enabled
Judy
1.0.5-18.0.1.module+el8.3.0+9616+7a81225f
galera
25.3.34-4.module+el8.5.0+20629+e1b20d6b
mariadb
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-backup
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-common
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-devel
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-embedded
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-embedded-devel
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-errmsg
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-gssapi-server
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-oqgraph-engine
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server-galera
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-server-utils
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
mariadb-test
10.3.32-2.0.1.module+el8.5.0+20629+e1b20d6b
Ссылки на источники
Связанные уязвимости
ELSA-2022-1557: mariadb:10.5 security, bug fix, and enhancement update (MODERATE)
Moderate: mariadb:10.5 security, bug fix, and enhancement update
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).