Overview

File _patchinfo of Package patchinfo.3880

<patchinfo incident="3880">
  <issue id="934789" tracker="bnc">VUL-0: mariadb/mysql: Logjam Attack: mysql uses 512 bit dh groups in SSL</issue>
  <issue id="859345" tracker="bnc">mysql crash with alternative cnf files (my-huge.cnf, my-large.cnf ...)</issue>
  <issue id="914370" tracker="bnc">mariadb: rcmysql status shows "Something went wrong" after start or stop when everything was OK</issue>
  <issue id="924663" tracker="bnc"></issue>
  <issue id="936407" tracker="bnc"></issue>
  <issue id="936408" tracker="bnc"></issue>
  <issue id="936409" tracker="bnc"></issue>
  <issue id="CVE-2015-4000" tracker="cve">logjam</issue>
  <issue id="CVE-2015-3152" tracker="cve">ssl enforcement</issue>
<issue tracker="cve" id="CVE-2014-8964"/>
<issue tracker="cve" id="CVE-2015-0499"/>
<issue tracker="cve" id="CVE-2015-0501"/>
<issue tracker="cve" id="CVE-2015-0505"/>
<issue tracker="cve" id="CVE-2015-2325"/>
<issue tracker="cve" id="CVE-2015-2326"/>
<issue tracker="cve" id="CVE-2015-2571"/>
<issue tracker="cve" id="CVE-2015-0433"/>
<issue tracker="cve" id="CVE-2015-0441"/>
<issue tracker="cve" id="CVE-2015-2568"/>
<issue tracker="cve" id="CVE-2015-2573"/>
<issue tracker="cve" id="CVE-2014-6568"/>
<issue tracker="cve" id="CVE-2015-0374"/>
<issue tracker="cve" id="CVE-2015-0381"/>
<issue tracker="cve" id="CVE-2015-0382"/>
<issue tracker="cve" id="CVE-2015-0411"/>
<issue tracker="cve" id="CVE-2015-0432"/>
<issue tracker="cve" id="CVE-2014-6464"/>
<issue tracker="cve" id="CVE-2014-6469"/>
<issue tracker="cve" id="CVE-2014-6491"/>
<issue tracker="cve" id="CVE-2014-6494"/>
<issue tracker="cve" id="CVE-2014-6496"/>
<issue tracker="cve" id="CVE-2014-6500"/>
<issue tracker="cve" id="CVE-2014-6507"/>
<issue tracker="cve" id="CVE-2014-6555"/>
<issue tracker="cve" id="CVE-2014-6559"/>
  <category>security</category>
  <rating>important</rating>
  <packager>scarabeus_iv</packager>
  <description>
MariaDB was updated to its current minor version, fixing bugs and security issues.

These updates include a fix for Logjam (CVE-2015-4000), making MariaDB work
with client software that no longer allows short DH groups over SSL, as e.g.
our current openssl packages.

On openSUSE 13.1, MariaDB was updated to 5.5.44.

On openSUSE 13.2, MariaDB was updated from 10.0.13 to 10.0.20.

Please read the release notes of MariaDB
  https://mariadb.com/kb/en/mariadb/mariadb-10020-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10019-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10018-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10017-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10016-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10015-release-notes/
  https://mariadb.com/kb/en/mariadb/mariadb-10014-release-notes/
for more information.
</description>
  <summary>Security update for MariaDB</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places