{"id":"RHSA-2018:0279","summary":"Red Hat Security Advisory: rh-mariadb100-mariadb security update","modified":"2025-11-22T11:26:47Z","published":"2024-09-15T23:46:19Z","upstream":["CVE-2016-5617","CVE-2016-6664","CVE-2017-10268","CVE-2017-10286","CVE-2017-10378","CVE-2017-10379","CVE-2017-10384","CVE-2017-3238","CVE-2017-3243","CVE-2017-3244","CVE-2017-3257","CVE-2017-3258","CVE-2017-3265","CVE-2017-3291","CVE-2017-3302","CVE-2017-3308","CVE-2017-3309","CVE-2017-3312","CVE-2017-3313","CVE-2017-3317","CVE-2017-3318","CVE-2017-3453","CVE-2017-3456","CVE-2017-3464","CVE-2017-3636","CVE-2017-3641","CVE-2017-3653"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0279"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixMSQL"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixMSQL"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"},{"type":"ARTICLE","url":"https://mariadb.com/kb/en/mariadb/mariadb-10029-release-notes/"},{"type":"ARTICLE","url":"https://mariadb.com/kb/en/mariadb/mariadb-10030-release-notes/"},{"type":"ARTICLE","url":"https://mariadb.com/kb/en/mariadb/mariadb-10031-release-notes/"},{"type":"ARTICLE","url":"https://mariadb.com/kb/en/mariadb/mariadb-10032-release-notes/"},{"type":"ARTICLE","url":"https://mariadb.com/kb/en/mariadb/mariadb-10033-release-notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1386564"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414133"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414338"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414340"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414342"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414350"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414351"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414353"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414355"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414357"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414423"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1414429"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1422119"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443358"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443359"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443365"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443369"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443379"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1472686"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1472693"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1472711"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503656"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503669"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503684"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503685"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503686"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0279.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-5617"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-5617"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-5617"},{"type":"ARTICLE","url":"https://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.txt"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-6664"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-6664"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6664"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3238"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3238"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3238"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3243"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3243"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3243"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3244"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3244"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3244"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3257"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3257"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3257"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3258"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3258"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3258"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3265"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3265"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3265"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3291"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3291"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3291"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3302"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3302"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3302"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3308"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3308"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3308"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3309"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3309"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3309"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3312"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3312"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3312"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3313"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3313"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3313"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3317"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3317"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3317"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3318"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3318"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3318"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3453"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3453"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3453"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3456"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3456"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3456"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3464"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3464"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3464"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3636"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3636"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3636"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3641"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3641"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3641"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-3653"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-3653"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3653"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10268"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10268"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10268"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10286"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10286"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10286"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10378"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10378"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10378"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10379"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10379"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10379"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10384"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10384"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10384"}],"affected":[{"package":{"name":"rh-mariadb100-mariadb","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-bench","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-bench"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-common","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-config","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-config"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-debuginfo","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-devel","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-errmsg","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-oqgraph-engine","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-server","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-test","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-bench","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-bench"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-common","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-config","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-config"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-debuginfo","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-devel","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-errmsg","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-oqgraph-engine","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-server","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}},{"package":{"name":"rh-mariadb100-mariadb-test","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-mariadb100-mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.0.33-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:0279.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}