{"id":"RHSA-2020:5500","summary":"Red Hat Security Advisory: mariadb:10.3 security, bug fix, and enhancement update","modified":"2026-03-14T01:47:39.615073Z","published":"2024-09-13T22:43:11Z","upstream":["CVE-2019-2938","CVE-2019-2974","CVE-2020-13249","CVE-2020-14765","CVE-2020-14776","CVE-2020-14789","CVE-2020-14812","CVE-2020-15180","CVE-2020-2574","CVE-2020-2752","CVE-2020-2760","CVE-2020-2780","CVE-2020-2812","CVE-2020-2814","CVE-2021-2022","CVE-2021-2144","CVE-2021-2194"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:5500"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1764680"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1764691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798587"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830056"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830059"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830060"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830082"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835849"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1839827"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1890738"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1890743"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1890747"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1890756"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894919"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1899009"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1899017"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1899021"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1899082"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1899086"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_5500.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-2938"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-2938"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-2938"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-2974"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-2974"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-2974"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2574"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2574"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2574"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpujan2020.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2752"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2752"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2752"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2760"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2760"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2760"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuapr2020.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2780"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2780"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2780"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2812"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2812"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2812"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-2814"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-2814"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-2814"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-13249"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-13249"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-13249"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-14765"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-14765"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14765"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuoct2020.html#AppendixMSQL"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-14776"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-14776"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14776"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-14789"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-14789"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14789"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-14812"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-14812"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14812"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-15180"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-15180"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15180"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-2022"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1922389"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-2022"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-2022"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-2144"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1951749"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-2144"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-2144"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuapr2021.html#AppendixMSQL"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-2194"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1951764"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-2194"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-2194"}],"affected":[{"package":{"name":"Judy","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/Judy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.5-18.module+el8+2765+cfa4f87b"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"Judy-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/Judy-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.5-18.module+el8+2765+cfa4f87b"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"Judy-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/Judy-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.5-18.module+el8+2765+cfa4f87b"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"galera","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:25.3.31-1.module+el8.3.0+8843+3f4e42f6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"galera-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/galera-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:25.3.31-1.module+el8.3.0+8843+3f4e42f6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"galera-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/galera-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:25.3.31-1.module+el8.3.0+8843+3f4e42f6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-backup","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-backup-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-backup-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-common","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-embedded","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-embedded-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-embedded-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-embedded-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-embedded-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-errmsg","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-gssapi-server","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-gssapi-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-gssapi-server-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-gssapi-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-oqgraph-engine","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-oqgraph-engine-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-oqgraph-engine-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-server","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-server-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-server-galera","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-server-galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-server-utils","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-server-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-server-utils-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-server-utils-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-test","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}},{"package":{"name":"mariadb-test-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/mariadb-test-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.27-3.module+el8.3.0+8972+5e3224e9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:5500.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"}]}