{"id":"USN-4250-2","summary":"mariadb-10.1, mariadb-10.3 vulnerability","details":"It was discovered that an unspecified vulnerability existed in the C API\ncomponent of MariaDB. An attacker could use this to cause a denial of\nservice for MariaDB clients.\n\nMariaDB has been updated to 10.3.22 in Ubuntu 19.10 and 10.1.44 in\nUbuntu 18.04 LTS.\n\nIn addition to security fixes, the updated packages contain bug fixes,\nnew features, and possibly incompatible changes.\n","modified":"2026-04-22T10:02:51.584612Z","published":"2020-02-06T23:48:40Z","related":["UBUNTU-CVE-2020-2574"],"upstream":["CVE-2020-2574","UBUNTU-CVE-2020-2574"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4250-2"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2020-2574"}],"affected":[{"package":{"name":"mariadb-10.1","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/mariadb-10.1@1:10.1.44-0ubuntu0.18.04.1?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:10.1.44-0ubuntu0.18.04.1"}]}],"versions":["10.1.25-1","1:10.1.29-6","1:10.1.34-0ubuntu0.18.04.1","1:10.1.38-0ubuntu0.18.04.1","1:10.1.38-0ubuntu0.18.04.2","1:10.1.40-0ubuntu0.18.04.1","1:10.1.41-0ubuntu0.18.04.1","1:10.1.43-0ubuntu0.18.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"libmariadbclient-dev-compat","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"libmariadbclient18","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"libmariadbd18","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-client","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-client-10.1","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-client-core-10.1","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-common","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-connect","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-cracklib-password-check","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-gssapi-client","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-gssapi-server","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-mroonga","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-oqgraph","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-spider","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-plugin-tokudb","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-server","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-server-10.1","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-server-core-10.1","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-test","binary_version":"1:10.1.44-0ubuntu0.18.04.1"},{"binary_name":"mariadb-test-data","binary_version":"1:10.1.44-0ubuntu0.18.04.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4250-2.json","cves_map":{"cves":[{"id":"CVE-2020-2574","severity":[{"score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:18.04:LTS"}}}],"schema_version":"1.7.5"}