SUSE-SU-2020:0496-1
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 26 Feb 2020, 14:18
Last modified:02 May 2025, 04:09
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
26 Feb 2020, 14:18
Published
Vulnerability first disclosed
02 May 2025, 04:09
Last Modified
Vulnerability information updated
Description
Security update for mariadb This update for mariadb fixes the following issues: MariaDB was updated to version 10.2.31 GA (bsc#1162388). Security issues fixed: - CVE-2020-2574: Fixed a difficult to exploit vulnerability that allowed an attacker to crash the client (bsc#1162388). - CVE-2019-18901: Fixed an unsafe path handling behavior in mysql-systemd-helper (bsc#1160895). - Enabled security hardenings in MariaDB's systemd service, namely ProtectSystem, ProtectHome and UMask (bsc#1160878).
Affected Systems
- suse•mariadb&distro=SUSE Linux Enterprise Module for Server Applications 15 SP1
< 10.2.31-3.26.1
References (8)
- https://www.suse.com/support/update/announcement/2020/suse-su-20200496-1/
- https://bugzilla.suse.com/1160878
- https://bugzilla.suse.com/1160883
- https://bugzilla.suse.com/1160895
- https://bugzilla.suse.com/1160912
- https://bugzilla.suse.com/1162388
- https://www.suse.com/security/cve/CVE-2019-18901
- https://www.suse.com/security/cve/CVE-2020-2574