Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2026-0232

Опубликовано: 07 янв. 2026
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2026-0232: mariadb:10.11 security update (IMPORTANT)

galera Judy mariadb [3:10.11.10-2]

  • Release bump for rebuild

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module mariadb:10.11 is enabled

Judy

1.0.5-18.module+el8.10.0+90753+7c7ea859

galera

26.4.20-1.module+el8.10.0+90753+7c7ea859

mariadb

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-backup

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-common

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-devel

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-embedded

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-embedded-devel

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-errmsg

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-gssapi-server

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-oqgraph-engine

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-pam

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server-galera

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server-utils

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-test

10.11.10-2.module+el8.10.0+90753+7c7ea859

Oracle Linux x86_64

Module mariadb:10.11 is enabled

Judy

1.0.5-18.module+el8.10.0+90753+7c7ea859

galera

26.4.20-1.module+el8.10.0+90753+7c7ea859

mariadb

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-backup

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-common

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-devel

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-embedded

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-embedded-devel

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-errmsg

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-gssapi-server

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-oqgraph-engine

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-pam

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server-galera

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-server-utils

10.11.10-2.module+el8.10.0+90753+7c7ea859

mariadb-test

10.11.10-2.module+el8.10.0+90753+7c7ea859

Связанные CVE

CVE-2025-13699

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2025-13699

CVSS3: 7
ubuntu
около 1 месяца назад

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.

nvd логотип

CVE-2025-13699

CVSS3: 7
nvd
около 1 месяца назад

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.

msrc логотип

CVE-2025-13699

CVSS3: 7
msrc
около 1 месяца назад

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

debian логотип

CVE-2025-13699

CVSS3: 7
debian
около 1 месяца назад

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution ...

suse-cvrf логотип

openSUSE-SU-2025:20175-1

suse-cvrf
около 1 месяца назад

Security update for mariadb