{"id":"SUSE-SU-2021:2837-1","summary":"Security update for mariadb","details":"This update for mariadb fixes the following issues:\n\nUpdate to version 10.2.40 (bsc#1189320):\n\n- fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389\n\nIn additon the follwing was changed:\n\n- Increase NOFILE limit on service configuration (bsc#1180014)\n  The default 'NOFILE' setting on mariadb service configuration is to low \n  and may cause instability on higher loads.\n","modified":"2026-02-04T03:03:15.997369Z","published":"2021-08-25T10:32:25Z","related":["CVE-2021-2372","CVE-2021-2389"],"upstream":["CVE-2021-2372","CVE-2021-2389"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20212837-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1180014"},{"type":"REPORT","url":"https://bugzilla.suse.com/1189320"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2372"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2389"}],"affected":[{"package":{"name":"mariadb","ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP2","purl":"pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.4.21-3.14.1"}]}],"ecosystem_specific":{"binaries":[{"mariadb":"10.4.21-3.14.1","mariadb-tools":"10.4.21-3.14.1","libmariadbd19":"10.4.21-3.14.1","libmariadbd-devel":"10.4.21-3.14.1","mariadb-errormessages":"10.4.21-3.14.1","mariadb-client":"10.4.21-3.14.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:2837-1.json"}}],"schema_version":"1.7.3"}