[Forgot Password]
Login  Register Subscribe

24437

 
 

131815

 
 

116564

 
 

909

 
 

91325

 
 

141

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2015:1665-01 -- Redhat mariadb

ID: oval:org.secpod.oval:def:501640Date: (C)2015-08-28   (M)2018-09-27
Class: PATCHFamily: unix




MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. It was found that the MySQL client library permitted but did not require a client to use SSL/TLS when establishing a secure connection to a MySQL server using the "--ssl" option. A man-in-the-middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server. This update fixes several vulnerabilities in the MariaDB database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page, listed in the References section. These updated packages upgrade MariaDB to version 5.5.44. Refer to the MariaDB Release Notes listed in the References section for a complete list of changes. All MariaDB users should upgrade to these updated packages, which correct these issues. After installing this update, the MariaDB server daemon will be restarted automatically.

Platform:
Red Hat Enterprise Linux 7
Product:
mariadb
Reference:
RHSA-2015:1665-01
CVE-2015-0433
CVE-2015-0441
CVE-2015-0499
CVE-2015-0501
CVE-2015-0505
CVE-2015-2568
CVE-2015-2571
CVE-2015-2573
CVE-2015-2582
CVE-2015-2620
CVE-2015-2643
CVE-2015-2648
CVE-2015-3152
CVE-2015-4737
CVE-2015-4752
CVE-2015-4757
CVE    16
CVE-2015-2573
CVE-2015-2571
CVE-2015-0505
CVE-2015-0501
...
CPE    2
cpe:/a:mariadb:mariadb
cpe:/o:redhat:enterprise_linux:7

© SecPod Technologies