Overview

File _patchinfo of Package patchinfo.9535

<patchinfo incident="9535">
  <issue tracker="bnc" id="1112397">VUL-0: CVE-2018-3251: mysql: InnoDB unspecified vulnerability (CPU Oct 2018)</issue>
  <issue tracker="bnc" id="1112368">VUL-0: CVE-2018-3174: mysql: Client programs unspecified vulnerability (CPU Oct 2018)</issue>
  <issue tracker="bnc" id="1103342">VUL-0: CVE-2018-3064: mysql: InnoDB unspecified vulnerability (CPU Jul 2018)</issue>
  <issue tracker="bnc" id="1116686">VUL-0: mariadb: 10.2.19,10.0.35 security release</issue>
  <issue tracker="bnc" id="1101678">VUL-0: CVE-2018-3066: mysql: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Options).</issue>
  <issue tracker="bnc" id="1112421">VUL-0: CVE-2018-3143: mysql: InnoDB unspecified vulnerability (CPU Oct 2018)</issue>
  <issue tracker="bnc" id="1112417">VUL-0: CVE-2018-3156: mysql: InnoDB unspecified vulnerability (CPU Oct 2018)</issue>
  <issue tracker="bnc" id="1112432">VUL-0: CVE-2018-3282: mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)</issue>
  <issue tracker="bnc" id="1013882">VUL-0: CVE-2016-9843: zlib: Big-endian out-of-bounds pointer</issue>
  <issue tracker="bnc" id="1101677">VUL-0: CVE-2018-3063: mysql: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Security Privileges).</issue>
  <issue tracker="bnc" id="1101676">VUL-0: CVE-2018-3058: mysql: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent MyISAM).</issue>
  <issue tracker="cve" id="2016-9843"/>
  <issue tracker="cve" id="2018-3058"/>
  <issue tracker="cve" id="2018-3063"/>
  <issue tracker="cve" id="2018-3064"/>
  <issue tracker="cve" id="2018-3066"/>
  <issue tracker="cve" id="2018-3143"/>
  <issue tracker="cve" id="2018-3156"/>
  <issue tracker="cve" id="2018-3174"/>
  <issue tracker="cve" id="2018-3251"/>
  <issue tracker="cve" id="2018-3282"/>
  <category>security</category>
  <rating>important</rating>
  <packager>kstreitova</packager>
  <description>This update for mariadb fixes the following issues:

Update to MariaDB 10.0.37 GA (bsc#1116686).

Security issues fixed:

- CVE-2018-3282: Server Storage Engines unspecified vulnerability (CPU Oct 2018) (bsc#1112432)
- CVE-2018-3251: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112397)
- CVE-2018-3174: Client programs unspecified vulnerability (CPU Oct 2018) (bsc#1112368)
- CVE-2018-3156: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112417)
- CVE-2018-3143: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112421)
- CVE-2018-3066: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Options). (bsc#1101678)
- CVE-2018-3064: InnoDB unspecified vulnerability (CPU Jul 2018) (bsc#1103342)
- CVE-2018-3063: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Security Privileges). (bsc#1101677)
- CVE-2018-3058: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent MyISAM). (bsc#1101676)
- CVE-2016-9843: Big-endian out-of-bounds pointer (bsc#1013882)

Release notes and changelog:

- https://kb.askmonty.org/en/mariadb-10037-release-notes
- https://kb.askmonty.org/en/mariadb-10037-changelog
- https://kb.askmonty.org/en/mariadb-10036-release-notes
- https://kb.askmonty.org/en/mariadb-10036-changelog
</description>
  <summary>Security update for mariadb</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places