SUSE-SU-2015:1273-1
- Source
- https://www.suse.com/support/update/announcement/2015/suse-su-20151273-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:1273-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2015:1273-1
- Related
- Published
- 2015-07-21T11:08:14Z
- Modified
- 2015-07-21T11:08:14Z
- Summary
- Security update for mariadb
- Details
-
This update fixes the following security issues: * Logjam attack: mysql uses 512 bit dh groups in SSL [bnc#934789] * CVE-2015-3152: mysql --ssl does not enforce SSL [bnc#924663] * CVE-2014-8964: heap buffer overflow [bnc#906574] * CVE-2015-2325: heap buffer overflow in compile_branch() [bnc#924960] * CVE-2015-2326: heap buffer overflow in pcre_compile2() [bnc#924961] * CVE-2015-0501: unspecified vulnerability related to Server:Compiling (CPU April 2015) * CVE-2015-2571: unspecified vulnerability related to Server:Optimizer (CPU April 2015) * CVE-2015-0505: unspecified vulnerability related to Server:DDL (CPU April 2015) * CVE-2015-0499: unspecified vulnerability related to Server:Federated (CPU April 2015) * CVE-2015-2568: unspecified vulnerability related to Server:Security:Privileges (CPU April 2015) * CVE-2015-2573: unspecified vulnerability related to Server:DDL (CPU April 2015) * CVE-2015-0433: unspecified vulnerability related to Server:InnoDB:DML (CPU April 2015) * CVE-2015-0441: unspecified vulnerability related to Server:Security:Encryption (CPU April 2015) - References
-
- https://www.suse.com/support/update/announcement/2015/suse-su-20151273-1/
- https://bugzilla.suse.com/906574
- https://bugzilla.suse.com/919053
- https://bugzilla.suse.com/919062
- https://bugzilla.suse.com/920865
- https://bugzilla.suse.com/920896
- https://bugzilla.suse.com/921333
- https://bugzilla.suse.com/924663
- https://bugzilla.suse.com/924960
- https://bugzilla.suse.com/924961
- https://bugzilla.suse.com/934789
- https://bugzilla.suse.com/936407
- https://bugzilla.suse.com/936408
- https://bugzilla.suse.com/936409
- https://www.suse.com/security/cve/CVE-2014-8964
- https://www.suse.com/security/cve/CVE-2015-0433
- https://www.suse.com/security/cve/CVE-2015-0441
- https://www.suse.com/security/cve/CVE-2015-0499
- https://www.suse.com/security/cve/CVE-2015-0501
- https://www.suse.com/security/cve/CVE-2015-0505
- https://www.suse.com/security/cve/CVE-2015-2325
- https://www.suse.com/security/cve/CVE-2015-2326
- https://www.suse.com/security/cve/CVE-2015-2568
- https://www.suse.com/security/cve/CVE-2015-2571
- https://www.suse.com/security/cve/CVE-2015-2573
- https://www.suse.com/security/cve/CVE-2015-3152
Affected packages
SUSE:Linux Enterprise Desktop 12 / mariadb
Package
- Name
- mariadb
- Purl
- purl:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Desktop%2012
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed10.0.20-18.1
Ecosystem specific
{
"binaries": [
{
"libmysqlclient_r18-32bit": "10.0.20-18.1",
"mariadb-errormessages": "10.0.20-18.1",
"libmysqlclient18": "10.0.20-18.1",
"libmysqlclient_r18": "10.0.20-18.1",
"mariadb": "10.0.20-18.1",
"libmysqlclient18-32bit": "10.0.20-18.1",
"mariadb-client": "10.0.20-18.1"
}
]
}
SUSE:Linux Enterprise Software Development Kit 12 / mariadb
Package
- Name
- mariadb
- Purl
- purl:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012
SUSE:Linux Enterprise Server 12 / mariadb
Package
- Name
- mariadb
- Purl
- purl:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%2012
SUSE:Linux Enterprise Server for SAP Applications 12 / mariadb
Package
- Name
- mariadb
- Purl
- purl:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012