UbuntuUpdates.org

Package "mariadb-10.3"

Name: mariadb-10.3

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • MariaDB database development files
  • MariaDB Connector/C, compatibility symlinks
  • MariaDB database client library
  • MariaDB database development files (transitional package)

Latest version: 1:10.3.25-0ubuntu0.20.04.1
Release: focal (20.04)
Level: updates
Repository: universe

Links



Other versions of "mariadb-10.3" in Focal

Repository Area Version
base universe 1:10.3.22-1ubuntu1
security universe 1:10.3.25-0ubuntu0.20.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1:10.3.25-0ubuntu0.20.04.1 2020-10-26 21:06:23 UTC

  mariadb-10.3 (1:10.3.25-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: New upstream version 10.3.25 includes fixes for the
    following security vulnerabilities (LP: #1899500):
    - CVE-2020-15180
  * Includes previous upstream version 10.3.23 which has the fixes for
    the following security vulnerabilities:
    - CVE-2020-13249
    - CVE-2020-2814
    - CVE-2020-2812
    - CVE-2020-2760
    - CVE-2020-2752
  * Includes subquery optimizer fix done in upstream MDEV-21614 (LP: #1894855)
  * Includes Galera startup fix done in upstream MDEV-21140 (LP: #1894855)
  * Adapt mariadb.pc location to upstream change
  * Update libmariadb symbols for upstream release 3.1.8
  * Remove salsa-ci.yml, does not work for Ubuntu quality assurance

 -- Otto Kekäläinen <email address hidden> Mon, 12 Oct 2020 20:14:50 +0300

1894855 MariaDB 10.3.22-MariaDB-1ubuntu1 on Focal has subquery optimizer bug
CVE-2020-13249 libmariadb/mariadb_lib.c in MariaDB Connector/C before 3.1.8 does not properly validate the content of an OK packet received from a server. NOTE: alt
CVE-2020-2814 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.47 and prior, 5.7.28 and
CVE-2020-2812 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and
CVE-2020-2760 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.29 and prior and 8.0.19 a
CVE-2020-2752 Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.27 and p



About   -   Send Feedback to @ubuntu_updates