Overview

File _patchinfo of Package patchinfo.3503

<patchinfo incident="3503">
  <issue id="1008318" tracker="bnc">VUL-0: mariadb: release update to version 10.0.28</issue>
  <issue id="1006539" tracker="bnc">mysql_install_db can't find data files</issue>
  <issue id="1005582" tracker="bnc">VUL-0: CVE-2016-8283: mysql: Unspecified vulnerability in subcomponent Types</issue>
  <issue id="1005581" tracker="bnc">VUL-0: CVE-2016-7440: mysql: Unspecified vulnerability in subcomponent Encryption</issue>
  <issue id="1005569" tracker="bnc">VUL-0: CVE-2016-5629: mysql: Unspecified vulnerability in subcomponent Federated</issue>
  <issue id="1005566" tracker="bnc">VUL-0: CVE-2016-5626: mysql: Unspecified vulnerability in subcomponent GIS</issue>
  <issue id="1005564" tracker="bnc">VUL-0: CVE-2016-5624: mysql: Unspecified vulnerability in subcomponent DML</issue>
  <issue id="1005562" tracker="bnc">VUL-0: CVE-2016-5616: mysql: Unspecified vulnerability in subcomponent MyISAM</issue>
  <issue id="1005558" tracker="bnc">VUL-0: CVE-2016-5584: mysql: Unspecified vulnerability in subcomponent Encryption</issue>
  <issue id="1005555" tracker="bnc">VUL-0: CVE-2016-3492: mysql: Unspecified vulnerability in subcomponent Optimizer</issue>
  <issue id="1003800" tracker="bnc">mariadb failing test  sys_vars.optimizer_switch_basic</issue>
  <issue id="1001367" tracker="bnc">VUL-0: CVE-2016-6663: mariadb,mysql: Privilege Escalation / Race Condition</issue>
  <issue id="2016-3492" tracker="cve" />
  <issue id="2016-5584" tracker="cve" />
  <issue id="2016-5616" tracker="cve" />
  <issue id="2016-5624" tracker="cve" />
  <issue id="2016-5626" tracker="cve" />
  <issue id="2016-5629" tracker="cve" />
  <issue id="2016-6663" tracker="cve" />
  <issue id="2016-7440" tracker="cve" />
  <issue id="2016-8283" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>kstreitova</packager>
  <description>
This mariadb update to version 10.0.28 fixes the following issues (bsc#1008318):

Security fixes:
- CVE-2016-8283: Unspecified vulnerability in subcomponent Types (bsc#1005582)
- CVE-2016-7440: Unspecified vulnerability in subcomponent Encryption (bsc#1005581)
- CVE-2016-5629: Unspecified vulnerability in subcomponent Federated (bsc#1005569)
- CVE-2016-5626: Unspecified vulnerability in subcomponent GIS (bsc#1005566)
- CVE-2016-5624: Unspecified vulnerability in subcomponent DML (bsc#1005564)
- CVE-2016-5616: Unspecified vulnerability in subcomponent MyISAM (bsc#1005562)
- CVE-2016-5584: Unspecified vulnerability in subcomponent Encryption (bsc#1005558)
- CVE-2016-3492: Unspecified vulnerability in subcomponent Optimizer (bsc#1005555)
- CVE-2016-6663: Privilege Escalation / Race Condition (bsc#1001367)

Bugfixes:
- mysql_install_db can't find data files (bsc#1006539)
- mariadb failing test sys_vars.optimizer_switch_basic (bsc#1003800)
- Notable changes:
  * XtraDB updated to 5.6.33-79.0
  * TokuDB updated to 5.6.33-79.0
  * Innodb updated to 5.6.33
  * Performance Schema updated to 5.6.33
- Release notes and upstream changelog:
  * https://kb.askmonty.org/en/mariadb-10028-release-notes
  * https://kb.askmonty.org/en/mariadb-10028-changelog
</description>
  <summary>Security update for mariadb</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places