VYPR

rpm package

suse/mariadb-connector-c&distro=SUSE Linux Enterprise Server for SAP Applications 15

pkg:rpm/suse/mariadb-connector-c&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015

Vulnerabilities (6)

  • CVE-2020-15180May 27, 2021
    affected < 3.1.11-3.22.2fixed 3.1.11-3.22.2

    A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, i

  • CVE-2020-14812Oct 21, 2020
    affected < 3.1.11-3.22.2fixed 3.1.11-3.22.2

    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multi

  • CVE-2020-14789Oct 21, 2020
    affected < 3.1.11-3.22.2fixed 3.1.11-3.22.2

    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compr

  • CVE-2020-14776Oct 21, 2020
    affected < 3.1.11-3.22.2fixed 3.1.11-3.22.2

    Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise

  • CVE-2020-14765Oct 21, 2020
    affected < 3.1.11-3.22.2fixed 3.1.11-3.22.2

    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple p

  • CVE-2020-13249May 20, 2020
    affected < 3.1.8-3.18.1fixed 3.1.8-3.18.1

    libmariadb/mariadb_lib.c in MariaDB Connector/C before 3.1.8 does not properly validate the content of an OK packet received from a server. NOTE: although mariadb_lib.c was originally based on code shipped for MySQL, this issue does not affect any MySQL components supported by Or