RHSA-2022:1007-01 -- Redhat rh-mariadb105-galera, rh-mariadb105-mariadbID: oval:org.secpod.oval:def:506800 | Date: (C)2022-10-20 (M)2023-08-02 |
Class: PATCH | Family: unix |
MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The following packages have been upgraded to a later upstream version: rh-mariadb105-mariadb , rh-mariadb105-galera . Security Fix: * mysql: Server: DML unspecified vulnerability * mysql: Server: DML unspecified vulnerability * mysql: InnoDB unspecified vulnerability * mysql: InnoDB unspecified vulnerability * mysql: InnoDB unspecified vulnerability * mariadb: Integer overflow in sql_lex.cc integer leading to crash * mariadb: Crash in get_sort_by_table in subquery with ORDER BY having outer ref * mariadb: Crash in set_var.cc via certain UPDATE queries with nested subqueries * mariadb: Crash caused by mishandling of a pushdown from a HAVING clause to a WHERE clause * mariadb: No password masking in audit log when using ALTER USER usergt; IDENTIFIED BY passwordgt; command For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * rh-mariadb105: /etc/security/user_map.conf getting overwritten with mariadb-server upgrade * Galera doesn"t work without "procps-ng" package [rhscl-3]
Platform: |
Red Hat Enterprise Linux 7 |
Product: |
rh-mariadb105-galera |
rh-mariadb105-mariadb |