SUSE-SU-2020:0505-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 27 Feb 2020, 09:36
Last modified:04 Feb 2026, 04:17

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

27 Feb 2020, 09:36
Published
Vulnerability first disclosed
04 Feb 2026, 04:17
Last Modified
Vulnerability information updated

Description

Security update for mariadb This update for mariadb fixes the following issues: MariaDB was updated to version 10.2.31 GA (bsc#1162388). Security issues fixed: - CVE-2020-2574: Fixed a difficult to exploit vulnerability that allowed an attacker to crash the client (bsc#1162388). - CVE-2019-18901: Fixed an unsafe path handling behavior in mysql-systemd-helper (bsc#1160895). - Enabled security hardenings in MariaDB's systemd service, namely ProtectSystem, ProtectHome and UMask (bsc#1160878). - Fixed a permissions issue in /var/lib/mysql (bsc#1077717).

Affected Systems

  • susemariadb&distro=SUSE Linux Enterprise Server 12 SP4

    < 10.2.31-3.25.1

  • susemariadb&distro=SUSE Linux Enterprise Server 12 SP5

    < 10.2.31-3.25.1

  • susemariadb&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4

    < 10.2.31-3.25.1

  • susemariadb&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5

    < 10.2.31-3.25.1

  • susemariadb&distro=SUSE OpenStack Cloud 9

    < 10.2.31-3.25.1

  • susemariadb&distro=SUSE OpenStack Cloud Crowbar 9

    < 10.2.31-3.25.1

References (9)