exploitDog

openSUSE-SU-2025:20089-1

Опубликовано: 26 нояб. 2025

Источник: suse-cvrf

Описание

Security update for mysql-connector-java

This update for mysql-connector-java fixes the following issues:

Upgrade to Version 9.3.0
- CVE-2025-30706: Fixed Connector/J vulnerability (bsc#1241693)
- Updatable ResultSet fails with 'Parameter index out of range'.
- Fixed Resultset UPDATE methods not checking validity of ResultSet.
- DatabaseMetaData clean up.
- Fixed implement missing methods in DatabaseMetaDataUsingInfoSchema.
- Fixed procedure execution failing when the parameter name contains escape character.
- Fixed allow only Krb5LoginModule in Kerberos authentication.
- Fixed EXECUTE on CallableStatement resulting in ArrayIndexOutOfBoundsException.
- Mysql connector use an uneffective way to match numericValue.
- Fixed parameter index validation not proper in CallableStatement

Список пакетов

openSUSE Leap 16.0

mysql-connector-java-9.3.0-160000.1.1

Ссылки

https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1241693
SUSE Bug 1241693
https://www.suse.com/security/cve/CVE-2025-30706/
SUSE CVE CVE-2025-30706 page

Описание

unknown

Затронутые продукты

openSUSE Leap 16.0:mysql-connector-java-9.3.0-160000.1.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-30706.html
CVE-2025-30706
https://bugzilla.suse.com/1241693
SUSE Bug 1241693