Important CentOS mariadb Security Update

Metadata

high
8.0
mariadb-5.5.40-1.el7_0.src.rpm, mariadb-5.5.40-1.el7_0.x86_64.rpm, mariadb-bench-5.5.40-1.el7_0.x86_64.rpm, mariadb-devel-5.5.40-1.el7_0.i686.rpm, mariadb-devel-5.5.40-1.el7_0.x86_64.rpm, mariadb-embedded-5.5.40-1.el7_0.i686.rpm, mariadb-embedded-5.5.40-1.el7_0.x86_64.rpm, mariadb-embedded-devel-5.5.40-1.el7_0.i686.rpm, mariadb-embedded-devel-5.5.40-1.el7_0.x86_64.rpm, mariadb-libs-5.5.40-1.el7_0.i686.rpm, mariadb-libs-5.5.40-1.el7_0.x86_64.rpm, mariadb-server-5.5.40-1.el7_0.x86_64.rpm, mariadb-test-5.5.40-1.el7_0.x86_64.rpm
CVE-2012-5615, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6484, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559
rhn.redhat.com, lists.centos.org
2014-11-17
2017-07-27 19:08
ALAS-2014-428
Important CentOS mysql55-mysql Security Update
CVE-2014-6555 mysql-5.5
CVE-2014-6551 mysql-5.5
CVE-2014-6469 mysql-5.5
CVE-2014-6520 mysql-5.5
CVE-2014-6559 mysql-5.5
CVE-2014-6530 mysql-5.5
CVE-2014-6505 mariadb-10.0
CVE-2014-6555 mariadb-10.0
CVE-2014-6559 mariadb-10.0
CVE-2014-4258 mariadb-10.0
CVE-2014-4260 mariadb-10.0
CVE-2014-4274 mysql-5.5
CVE-2014-4260 mysql-5.5
CVE-2014-4258 mysql-5.5
CVE-2014-6463 mariadb-10.0
CVE-2014-4274 mariadb-10.0
CVE-2014-2494 mysql-5.5
CVE-2014-6464 mysql-5.5
CVE-2014-4287 mariadb-10.0
CVE-2014-6551 mariadb-10.0
CVE-2014-2494 mariadb-10.0
CVE-2014-6520 mariadb-10.0
CVE-2014-6505 mysql-5.5
CVE-2014-4243 mysql-5.5
CVE-2014-6507 mysql-5.5
CVE-2014-6530 mariadb-10.0
CVE-2014-4207 mariadb-10.0
CVE-2014-6469 mariadb-10.0
CVE-2012-5615 mysql-5.5
CVE-2014-4207 mysql-5.5
CVE-2014-6484 mariadb-10.0
CVE-2014-4287 mysql-5.5
CVE-2014-6464 mariadb-10.0
CVE-2014-6507 mariadb-10.0
CVE-2014-4243 mariadb-10.0
CVE-2014-6463 mysql-5.5
CVE-2014-6484 mysql-5.5
CVE-2014-6551
CVE-2014-2494
CVE-2014-6469
CVE-2014-4260
CVE-2014-6505
CVE-2014-6484
CVE-2014-4207
CVE-2014-6464
CVE-2014-6530
CVE-2014-6463
CVE-2014-6507
CVE-2014-6555
CVE-2014-6520
CVE-2014-4243
CVE-2014-4258
CVE-2014-4287
CVE-2012-5615
CVE-2014-4274
CVE-2014-6559
2017-04-01 19:08
2017-01-05 20:12

Description


Updated mariadb packages that fix several security issues are now available
for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

MariaDB is a multi-user, multi-threaded SQL database server that is binary
compatible with MySQL.

This update fixes several vulnerabilities in the MariaDB database server.
Information about these flaws can be found on the Oracle Critical Patch
Update Advisory page, listed in the References section. (CVE-2014-2494,
CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4287,
CVE-2014-4274, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6484,
CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551,
CVE-2014-6555, CVE-2014-6559)

These updated packages upgrade MariaDB to version 5.5.40. Refer to the
MariaDB Release Notes listed in the References section for a complete list
of changes.

All MariaDB users should upgrade to these updated packages, which correct
these issues. After installing this update, the MariaDB server daemon
(mysqld) will be restarted automatically.
Please see https://www.redhat.com/footer/terms-of-use.html

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
7 mariadb mariadb-5.5.40-1.el7_0.src.rpm
mariadb mariadb-5.5.40-1.el7_0.x86_64.rpm
mariadb-bench mariadb-bench-5.5.40-1.el7_0.x86_64.rpm
mariadb-devel mariadb-devel-5.5.40-1.el7_0.i686.rpm
mariadb-devel mariadb-devel-5.5.40-1.el7_0.x86_64.rpm
mariadb-embedded mariadb-embedded-5.5.40-1.el7_0.i686.rpm
mariadb-embedded mariadb-embedded-5.5.40-1.el7_0.x86_64.rpm
mariadb-embedded-devel mariadb-embedded-devel-5.5.40-1.el7_0.i686.rpm
mariadb-embedded-devel mariadb-embedded-devel-5.5.40-1.el7_0.x86_64.rpm
mariadb-libs mariadb-libs-5.5.40-1.el7_0.i686.rpm
mariadb-libs mariadb-libs-5.5.40-1.el7_0.x86_64.rpm
mariadb-server mariadb-server-5.5.40-1.el7_0.x86_64.rpm
mariadb-test mariadb-test-5.5.40-1.el7_0.x86_64.rpm