Описание
Security update for mariadb
This update for mariadb fixes the following issues:
Security issue fixed:
- CVE-2019-2974: Fixed Server Optimizer (bsc#1154162).
Список пакетов
HPE Helion OpenStack 8
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Enterprise Storage 5
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server 12 SP1-LTSS
libmysqlclient-devel-10.0.40.2-29.35.1
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
libmysqlclient_r18-10.0.40.2-29.35.1
libmysqld-devel-10.0.40.2-29.35.1
libmysqld18-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server 12 SP2-BCL
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server 12 SP2-LTSS
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server 12 SP3-BCL
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server 12 SP3-LTSS
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
libmysqlclient-devel-10.0.40.2-29.35.1
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
libmysqlclient_r18-10.0.40.2-29.35.1
libmysqld-devel-10.0.40.2-29.35.1
libmysqld18-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE OpenStack Cloud 7
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE OpenStack Cloud 8
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
SUSE OpenStack Cloud Crowbar 8
libmysqlclient18-10.0.40.2-29.35.1
libmysqlclient18-32bit-10.0.40.2-29.35.1
mariadb-10.0.40.2-29.35.1
mariadb-client-10.0.40.2-29.35.1
mariadb-errormessages-10.0.40.2-29.35.1
mariadb-tools-10.0.40.2-29.35.1
Ссылки
- Link for SUSE-SU-2020:0050-1
- E-Mail link for SUSE-SU-2020:0050-1
- SUSE Security Ratings
- SUSE Bug 1154162
- SUSE CVE CVE-2019-2974 page
Описание
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Затронутые продукты
HPE Helion OpenStack 8:libmysqlclient18-10.0.40.2-29.35.1
HPE Helion OpenStack 8:libmysqlclient18-32bit-10.0.40.2-29.35.1
HPE Helion OpenStack 8:mariadb-10.0.40.2-29.35.1
HPE Helion OpenStack 8:mariadb-client-10.0.40.2-29.35.1
Ссылки
- CVE-2019-2974
- SUSE Bug 1154162
- SUSE Bug 1156669