Security update to MariaDB 5.5.46 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:2246-1 Final 1 1 2015-12-10T08:21:04Z current 2015-12-10T08:21:04Z 2015-12-10T08:21:04Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update to MariaDB 5.5.46 MariaDB was updated to 5.5.46 to fix security issues and bugs. The following vulnerabilities were fixed in the upstream release: CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4913, CVE-2015-4792 A list of upstream changes and release notes can be found here: https://mariadb.com/kb/en/mariadb/mariadb-5546-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-5546-changelog/ The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html E-Mail link for openSUSE-SU-2015:2246-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings libmysqlclient-devel-5.5.46-13.1 libmysqlclient18-5.5.46-13.1 libmysqlclient18-32bit-5.5.46-13.1 libmysqlclient_r18-5.5.46-13.1 libmysqlclient_r18-32bit-5.5.46-13.1 libmysqld-devel-5.5.46-13.1 libmysqld18-5.5.46-13.1 mariadb-5.5.46-13.1 mariadb-bench-5.5.46-13.1 mariadb-client-5.5.46-13.1 mariadb-errormessages-5.5.46-13.1 mariadb-test-5.5.46-13.1 mariadb-tools-5.5.46-13.1 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition, a different vulnerability than CVE-2015-4802. CVE-2015-4792 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4792.html CVE-2015-4792 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition, a different vulnerability than CVE-2015-4792. CVE-2015-4802 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4802.html CVE-2015-4802 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier, when running on Windows, allows remote authenticated users to affect availability via unknown vectors related to Server : Query Cache. CVE-2015-4807 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4807.html CVE-2015-4807 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL. CVE-2015-4815 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4815.html CVE-2015-4815 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types. CVE-2015-4826 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4826.html CVE-2015-4826 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges. CVE-2015-4830 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4830.html CVE-2015-4830 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : SP. CVE-2015-4836 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4836.html CVE-2015-4836 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2015-4913. CVE-2015-4858 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4858.html CVE-2015-4858 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB. CVE-2015-4861 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4861.html CVE-2015-4861 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser. CVE-2015-4870 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4870.html CVE-2015-4870 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789 Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858. CVE-2015-4913 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html https://www.suse.com/security/cve/CVE-2015-4913.html CVE-2015-4913 https://bugzilla.suse.com/951391 SUSE Bug 951391 https://bugzilla.suse.com/958789 SUSE Bug 958789