MGASA-2020-0072

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2020-0072.html

Import Source

https://advisories.mageia.org/MGASA-2020-0072.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2020-0072

Related

CVE-2020-2574

Published

2020-01-30T18:28:34Z

Modified

2020-01-30T18:04:22Z

Summary

Updated mariadb packages fix security vulnerability

Details

Updated MariaDB packages fix security vulnerabilities:

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client (CVE-2020-2574).

In addtion a new pam subpackge is provided which adds prebuilt pamusermap

For other fixes in this update, see the referenced release notes.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:7 / mariadb

Package

Name: mariadb
Purl: pkg:rpm/mageia/mariadb?distro=mageia-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.3.22-1.mga7

Ecosystem specific

{
    "section": "core"
}