File _patchinfo of Package patchinfo.25901
<patchinfo incident="25901"> <issue tracker="cve" id="2022-32088"/> <issue tracker="cve" id="2022-32091"/> <issue tracker="cve" id="2022-32083"/> <issue tracker="cve" id="2022-32087"/> <issue tracker="cve" id="2022-32085"/> <issue tracker="cve" id="2022-38791"/> <issue tracker="cve" id="2022-32089"/> <issue tracker="cve" id="2022-32081"/> <issue tracker="cve" id="2022-32082"/> <issue tracker="cve" id="2022-32086"/> <issue tracker="cve" id="2022-32084"/> <issue tracker="bnc" id="1201161">VUL-0: CVE-2022-32081: mariadb: use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc</issue> <issue tracker="bnc" id="1201170">VUL-0: CVE-2022-32091: mariadb: use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc</issue> <issue tracker="bnc" id="1202863">VUL-0: CVE-2022-38791: mariadb-100,mariadb: data_mutex not released in compress_write causing a deadlock</issue> <issue tracker="bnc" id="1201164">VUL-0: CVE-2022-32084: mariadb: segmentation fault via the component sub_select</issue> <issue tracker="bnc" id="1201162">VUL-0: CVE-2022-32082: mariadb: assertion failure at table->get_ref_count() == 0 in dict0dict.cc</issue> <issue tracker="bnc" id="1201167">VUL-0: CVE-2022-32087: mariadb: segmentation fault via the component Item_args:walk_args</issue> <issue tracker="bnc" id="1201165">VUL-0: CVE-2022-32085: mariadb: segmentation fault via the component Item_func_in:cleanup/Item:cleanup_processor</issue> <issue tracker="bnc" id="1201169">VUL-0: CVE-2022-32089: mariadb: segmentation fault via the component st_select_lex_unit:exclude_level</issue> <issue tracker="bnc" id="1200105">/usr/lib/mysql/mysql-systemd-helper is unaware of custom group, therfore Operation not permitted for chown command</issue> <issue tracker="bnc" id="1201168">VUL-0: CVE-2022-32088: mariadb: segmentation fault via the component Exec_time_tracker:get_loops/Filesort_tracker:report_use/filesort</issue> <issue tracker="bnc" id="1201163">VUL-0: CVE-2022-32083: mariadb: segmentation fault via the component Item_subselect:init_expr_cache_tracker</issue> <issue tracker="bnc" id="1201166">VUL-0: CVE-2022-32086: mariadb: segmentation fault via the component Item_field:fix_outer_field</issue> <packager>dspinella</packager> <rating>important</rating> <category>security</category> <summary>Security update for mariadb</summary> <description>This update for mariadb fixes the following issues: Update to 10.5.17: - CVE-2022-32082: Fixed assertion failure at table->get_ref_count() == 0 in dict0dict.cc (bsc#1201162). - CVE-2022-32089: Fixed segmentation fault via the component st_select_lex_unit::exclude_level (bsc#1201169). - CVE-2022-32081: Fixed use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc (bsc#1201161). - CVE-2022-32091: Fixed use-after-poison in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc (bsc#1201170). - CVE-2022-32084: Fixed segmentation fault via the component sub_select (bsc#1201164). - CVE-2022-38791: Fixed deadlock in compress_write in extra/mariabackup/ds_compress.cc (bsc#1202863). - CVE-2022-32088: Fixed segmentation fault via the component Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort (bsc#1201168). - CVE-2022-32087: Fixed segmentation fault via the component Item_args::walk_args (bsc#1201167). - CVE-2022-32086: Fixed segmentation fault via the component Item_field::fix_outer_field (bsc#1201166). - CVE-2022-32085: Fixed segmentation fault via the component Item_func_in::cleanup/Item::cleanup_processor (bsc#1201165). - CVE-2022-32083: Fixed segmentation fault via the component Item_subselect::init_expr_cache_tracker (bsc#1201163). Bugfixes: - Fixed mysql-systemd-helper being unaware of custom group (bsc#1200105). </description> </patchinfo>
