rpm package

suse/mariadb-100&distro=SUSE Linux Enterprise Server 12 SP4

pkg:rpm/suse/mariadb-100&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Vulnerabilities (22)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2020-2812	—	< 10.0.40.4-2.20.1	10.0.40.4-2.20.1	Apr 15, 2020	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access
CVE-2020-2752	—	< 10.0.40.4-2.20.1	10.0.40.4-2.20.1	Apr 15, 2020	Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple proto
CVE-2020-2574	—	< 10.0.40.3-2.15.1	10.0.40.3-2.15.1	Jan 15, 2020	Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple prot
CVE-2019-2974	—	< 10.0.40.2-2.12.2	10.0.40.2-2.12.2	Oct 16, 2019	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2019-2805	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Jul 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mu
CVE-2019-2740	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Jul 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2019-2739	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Jul 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon
CVE-2019-2737	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Jul 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Pluggable Auth). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network acc
CVE-2019-2627	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Apr 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with networ
CVE-2019-2614	—	< 10.0.40.1-2.9.1	10.0.40.1-2.9.1	Apr 23, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high privileged attacker with network acces
CVE-2019-2537	—	< 10.0.38-2.6.2	10.0.38-2.6.2	Jan 16, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mult
CVE-2019-2529	—	< 10.0.38-2.6.2	10.0.38-2.6.2	Jan 16, 2019	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via
CVE-2018-3282	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Oct 17, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacke
CVE-2018-3251	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Oct 17, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3174	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Oct 17, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with
CVE-2018-3156	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Oct 17, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3143	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Oct 17, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3066	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Jul 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access vi
CVE-2018-3064	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Jul 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3063	—	< 10.0.37-2.3.1	10.0.37-2.3.1	Jul 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.60 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to comp

CVE-2020-2812Apr 15, 2020
affected < 10.0.40.4-2.20.1fixed 10.0.40.4-2.20.1
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access
CVE-2020-2752Apr 15, 2020
affected < 10.0.40.4-2.20.1fixed 10.0.40.4-2.20.1
Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple proto
CVE-2020-2574Jan 15, 2020
affected < 10.0.40.3-2.15.1fixed 10.0.40.3-2.15.1
Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple prot
CVE-2019-2974Oct 16, 2019
affected < 10.0.40.2-2.12.2fixed 10.0.40.2-2.12.2
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2019-2805Jul 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mu
CVE-2019-2740Jul 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2019-2739Jul 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon
CVE-2019-2737Jul 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Pluggable Auth). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network acc
CVE-2019-2627Apr 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with networ
CVE-2019-2614Apr 23, 2019
affected < 10.0.40.1-2.9.1fixed 10.0.40.1-2.9.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high privileged attacker with network acces
CVE-2019-2537Jan 16, 2019
affected < 10.0.38-2.6.2fixed 10.0.38-2.6.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mult
CVE-2019-2529Jan 16, 2019
affected < 10.0.38-2.6.2fixed 10.0.38-2.6.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via
CVE-2018-3282Oct 17, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacke
CVE-2018-3251Oct 17, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3174Oct 17, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with
CVE-2018-3156Oct 17, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3143Oct 17, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3066Jul 18, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access vi
CVE-2018-3064Jul 18, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p
CVE-2018-3063Jul 18, 2018
affected < 10.0.37-2.3.1fixed 10.0.37-2.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.60 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to comp

Page 1 of 2