Thread: [Cucumber-linux-security] mariadb (security update is available)
A general purpose desktop and server Linux distribution.
Brought to you by:
z5t1
Menu
▾
▴
cucumber-linux-security
|
From: Z5T1 <z5...@z5...> - 2017-07-15 21:35:20
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 Here are the details from the Cucumber 1.0 changelog: +----------------+ Sat Jul 15 08:47:35 EDT 2017 net-general/mariadb upgraded from 10.1.22 to 10.1.25 to fix several security vulnerabilities. For more information see: https://mariadb.com/kb/en/mariadb/security/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3302 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3308 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3309 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3313 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3453 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3456 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3464 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.22 to 10.1.25 (x86_64 only). +----------------+ ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found at the following location: Cucumber 1.0 i686: http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-i686/net-general/mariadb-10.1.25-i686-1.txz Cucumber 1.0 x86_64: http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-x86_64/net-general/mariadb-10.1.25-x86_64-1.txz http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-x86_64/multilib/net-general/mariadb-lib_i686-10.1.25-lib_i686-1.txz To upgrade the package manually, download the new package and run the following command (as root): # upgradepkg mariadb-10.1.25-i686-1.txz ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... http://www.cucumberlinux.com/security.php |
|
From: Z5T1 <z5...@z5...> - 2017-08-31 15:32:04
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 Here are the details from the Cucumber 1.0 changelog: +----------------+ Thu Aug 31 10:57:52 EDT 2017 net-general/mariadb upgarded from 10.1.25 to 10.1.26 to fix a few security vulnerabilities (CVE-2017-3653, CVE-2017-3641 and CVE-2017-3636) which could allow for unauthorized update, insert and delete access to some MariaDB server data as well as a server crash. For more information see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3653 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3641 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3636 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.25 to 10.1.26 (x86_64 only) +----------------+ ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found at the following location: Cucumber 1.0 i686: http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-i686/net-general/mariadb-10.1.26-i686-1.txz Cucumber 1.0 x86_64: http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-x86_64/net-general/mariadb-10.1.26-x86_64-1.txz http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/cucumber-x86_64/multilib/net-general/mariadb-lib_i686-10.1.26-lib_i686-1.txz To upgrade the package manually, download the new package and run the following command (as root): # upgradepkg mariadb-10.1.26-i686-1.txz ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... http://www.cucumberlinux.com/security.php |
|
From: Z5T1 <z5...@z5...> - 2017-11-03 15:06:14
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Alpha Here are the details from the Cucumber 1.0 changelog: +----------------+ Fri Nov 3 10:31:28 EDT 2017 net-general/mariadb upgraded from 10.1.26 to 10.1.28 to fix CVE-2017-10268 (difficult to exploit) and CVE-2017-10378 (easy to exploit), two vulnerabilities that could result in unauthorized access to critical data or complete access all data accessible by MaraiDB. Note that this has not yet been formally acknowledged by the MaraiDB developers; however, other distributions are all claiming that these vulnerabilities are fixed in MaraiDB 10.1.28. For more information see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10268 http://security.cucumberlinux.com/security/details.php?id=124 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10378 http://security.cucumberlinux.com/security/details.php?id=125 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.26 to 10.1.28 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-124 [CVE-2017-10268] (http://security.cucumberlinux.com/security/details.php?id=124) * CLD-125 [CVE-2017-10378] (http://security.cucumberlinux.com/security/details.php?id=125) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> http://www.cucumberlinux.com/security.php |
|
From: Z5T1 <z5...@z5...> - 2017-11-17 15:22:11
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Alpha Here are the details from the Cucumber 1.0 changelog: +----------------+ Fri Nov 17 09:24:06 EST 2017 net-general/mariadb upgraded from 10.1.28 to 10.1.29 to fix CVE-2017-10268 (difficult to exploit) and CVE-2017-10378 (easy to exploit), two vulnerabilities that could result in unauthorized access to critical data or complete access all data accessible by MaraiDB. It was originally claimed that these vulnerabilities had been fixed in MariaDB 10.1.28; however, it turns out this was incorrect: they have been fixed in 10.1.29. For more information see: http://security.cucumberlinux.com/security/details.php?id=124 https://nvd.nist.gov/vuln/detail/CVE-2017-10268 http://security.cucumberlinux.com/security/details.php?id=125 https://nvd.nist.gov/vuln/detail/CVE-2017-10378 https://mariadb.com/kb/en/library/changes-improvements-in-mariadb-101/ multilib/net-general/maraidb-lib_i686 upgraded from 10.1.28 to 10.1.29 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-124 [CVE-2017-10268] (http://security.cucumberlinux.com/security/details.php?id=124) * CLD-125 [CVE-2017-10378] (http://security.cucumberlinux.com/security/details.php?id=125) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> http://www.cucumberlinux.com/security.php |
|
From: Scott C. <z5...@z5...> - 2017-12-23 05:22:31
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Beta Here are the details from the Cucumber 1.0 changelog: +----------------+ Fri Dec 22 23:48:22 EST 2017 net-general/mariadb upgraded from 10.1.29 to 10.1.30 to fix CVE-2017-15365, a vulnerability in which a database user could possibly perform modifications on certain cluster nodes without having privileges to perform such changes. For more information see: https://nvd.nist.gov/vuln/detail/CVE-2017-15365 http://security.cucumberlinux.com/security/details.php?id=189 https://bugzilla.redhat.com/show_bug.cgi?id=1524234 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.29 to 10.1.30 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-189 [CVE-2017-15365] (http://security.cucumberlinux.com/security/details.php?id=189) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> http://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2018-02-07 19:34:32
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Beta Here are the details from the Cucumber 1.0 changelog: +----------------+ Wed Feb 7 13:59:38 EST 2018 net-general/mariadb upgraded from 10.1.30 to 10.1.31 to fix several security vulnerabilities: CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668 and CVE-2018-2612. For more information see: http://security.cucumberlinux.com/security/details.php?id=273 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2562 http://security.cucumberlinux.com/security/details.php?id=274 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2622 http://security.cucumberlinux.com/security/details.php?id=275 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2640 http://security.cucumberlinux.com/security/details.php?id=276 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2665 http://security.cucumberlinux.com/security/details.php?id=277 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2668 http://security.cucumberlinux.com/security/details.php?id=278 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2612 mulitlib/net-general/mariadb-lib_i686 upgraded from 10.1.30 to 10.1.31 (x86_64 only). * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-273 [CVE-2018-2562] (http://security.cucumberlinux.com/security/details.php?id=273) * CLD-274 [CVE-2018-2622] (http://security.cucumberlinux.com/security/details.php?id=274) * CLD-275 [CVE-2018-2640] (http://security.cucumberlinux.com/security/details.php?id=275) * CLD-276 [CVE-2018-2665] (http://security.cucumberlinux.com/security/details.php?id=276) * CLD-277 [CVE-2018-2668] (http://security.cucumberlinux.com/security/details.php?id=277) * CLD-278 [CVE-2018-2612] (http://security.cucumberlinux.com/security/details.php?id=278) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> http://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2018-05-10 20:10:03
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Thu May 10 15:22:51 EDT 2018 net-general/mariadb upgraded from 10.1.32 to 10.1.33 to fix several security vulnerabilities: CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2766 CVE-2018-2755 CVE-2018-2819 CVE-2018-2817 CVE-2018-2761 CVE-2018-2781 CVE-2018-2771 and CVE-2018-2813. The worst of these (CVE-2018-2755) was a very difficult to exploit vulnerability that allowed for a complete takeover of a MariaDB server only if an attacker could successfully get someone with legitimate access to the server to perform an action. CVE-2018-2813 allowed for unauthorized read access to a subset of the MariaDB server accessible data. The remaining vulnerabilities all allowed for a denial of service attacks (server crashes). For more information see: https://mariadb.com/kb/en/library/mariadb-10133-release-notes/ https://security.cucumberlinux.com/security/details.php?id=387 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2782 https://security.cucumberlinux.com/security/details.php?id=388 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2784 https://security.cucumberlinux.com/security/details.php?id=389 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2787 https://security.cucumberlinux.com/security/details.php?id=390 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2766 https://security.cucumberlinux.com/security/details.php?id=391 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2755 https://security.cucumberlinux.com/security/details.php?id=392 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2819 https://security.cucumberlinux.com/security/details.php?id=393 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2817 https://security.cucumberlinux.com/security/details.php?id=394 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2761 https://security.cucumberlinux.com/security/details.php?id=395 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2781 https://security.cucumberlinux.com/security/details.php?id=396 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2771 https://security.cucumberlinux.com/security/details.php?id=397 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2813 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.32 to 10.1.33 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-387 [CVE-2018-2782] (https://security.cucumberlinux.com/security/details.php?id=387) * CLD-388 [CVE-2018-2784] (https://security.cucumberlinux.com/security/details.php?id=388) * CLD-389 [CVE-2018-2787] (https://security.cucumberlinux.com/security/details.php?id=389) * CLD-390 [CVE-2018-2766] (https://security.cucumberlinux.com/security/details.php?id=390) * CLD-391 [CVE-2018-2755] (https://security.cucumberlinux.com/security/details.php?id=391) * CLD-392 [CVE-2018-2819] (https://security.cucumberlinux.com/security/details.php?id=392) * CLD-393 [CVE-2018-2817] (https://security.cucumberlinux.com/security/details.php?id=393) * CLD-394 [CVE-2018-2761] (https://security.cucumberlinux.com/security/details.php?id=394) * CLD-395 [CVE-2018-2781] (https://security.cucumberlinux.com/security/details.php?id=395) * CLD-396 [CVE-2018-2771] (https://security.cucumberlinux.com/security/details.php?id=396) * CLD-397 [CVE-2018-2813] (https://security.cucumberlinux.com/security/details.php?id=397) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2018-08-13 00:45:30
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.0 * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Sun Aug 12 20:36:04 EDT 2018 net-general/mariadb upgraded from 10.1.34 to 10.1.35 to fix several security vulnerabilities (CVE-2018-3064, CVE-2018-3063, CVE-2018-3058 and CVE-2018-3063). These vulnerabilities allowed for attackers with network access to perform unauthorized updates, inserts, deletes and reads. It additionally allowed for an attacker to cause a reliable denial of service (crash of mysqld). For more information see: https://mariadb.com/kb/en/library/mariadb-10135-release-notes/ https://security.cucumberlinux.com/security/details.php?id=516 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3064 https://security.cucumberlinux.com/security/details.php?id=517 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3063 https://security.cucumberlinux.com/security/details.php?id=518 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3058 https://security.cucumberlinux.com/security/details.php?id=519 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3066 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.34 to 10.1.35 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-516 [CVE-2018-3064] (https://security.cucumberlinux.com/security/details.php?id=516) * CLD-517 [CVE-2018-3063] (https://security.cucumberlinux.com/security/details.php?id=517) * CLD-518 [CVE-2018-3058] (https://security.cucumberlinux.com/security/details.php?id=518) * CLD-519 [CVE-2018-3066] (https://security.cucumberlinux.com/security/details.php?id=519) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2018-11-07 18:55:20
Attachments:
signature.asc
|
Update Information A security update is available for fuse for the following versions of Cucumber Linux: * 1.0 * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Wed Nov 7 13:42:31 EST 2018 net-general/mariadb upgraded from 10.1.36 to 10.1.37 to fix several security vulnerabilities: CVE-2018-3282, CVE-2016-9843, CVE-2018-3174, CVE-2018-3143, CVE-2018-3156 and CVE-2018-3251. For more information see: https://mariadb.com/kb/en/library/mariadb-10137-release-notes/ https://security.cucumberlinux.com/security/details.php?id=598 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10906 https://security.cucumberlinux.com/security/details.php?id=599 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3282 https://security.cucumberlinux.com/security/details.php?id=600 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9843 https://security.cucumberlinux.com/security/details.php?id=601 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3174 https://security.cucumberlinux.com/security/details.php?id=602 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3143 https://security.cucumberlinux.com/security/details.php?id=603 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3156 https://security.cucumberlinux.com/security/details.php?id=604 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3251 multilib/net-general/maraidb-lib_i686 upgraded from 10.1.36 to 10.1.37 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-598 [CVE-2018-10906] (https://security.cucumberlinux.com/security/details.php?id=598) * CLD-599 [CVE-2018-3282] (https://security.cucumberlinux.com/security/details.php?id=599) * CLD-600 [CVE-2016-9843] (https://security.cucumberlinux.com/security/details.php?id=600) * CLD-601 [CVE-2018-3174] (https://security.cucumberlinux.com/security/details.php?id=601) * CLD-602 [CVE-2018-3143] (https://security.cucumberlinux.com/security/details.php?id=602) * CLD-603 [CVE-2018-3156] (https://security.cucumberlinux.com/security/details.php?id=603) * CLD-604 [CVE-2018-3251] (https://security.cucumberlinux.com/security/details.php?id=604) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure fuse is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2019-04-05 17:05:59
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Fri Apr 5 12:32:55 EDT 2019 net-general/mariadb upgraded from 10.1.37 to 10.1.38 to fix two security vulnerabilities (CVE-2019-2529 and CVE-2019-2537) that could be used to cause a remote denial of service via a hang or crash. For more information see: https://mariadb.com/kb/en/library/mariadb-10138-release-notes/ https://security.cucumberlinux.com/security/details.php?id=681 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2529 https://security.cucumberlinux.com/security/details.php?id=680 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.37 to 10.1.38 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-680 [CVE-2019-2537] (https://security.cucumberlinux.com/security/details.php?id=680) * CLD-681 [CVE-2019-2529] (https://security.cucumberlinux.com/security/details.php?id=681) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2019-04-05 17:12:15
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Fri Apr 5 12:32:55 EDT 2019 net-general/mariadb upgraded from 10.1.37 to 10.1.38 to fix two security vulnerabilities (CVE-2019-2529 and CVE-2019-2537) that could be used to cause a remote denial of service via a hang or crash. For more information see: https://mariadb.com/kb/en/library/mariadb-10138-release-notes/ https://security.cucumberlinux.com/security/details.php?id=681 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2529 https://security.cucumberlinux.com/security/details.php?id=680 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.37 to 10.1.38 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-680 [CVE-2019-2537] (https://security.cucumberlinux.com/security/details.php?id=680) * CLD-681 [CVE-2019-2529] (https://security.cucumberlinux.com/security/details.php?id=681) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
|
From: Scott C. <sc...@cu...> - 2019-05-14 15:32:36
Attachments:
signature.asc
|
Update Information A security update is available for mariadb for the following versions of Cucumber Linux: * 1.1 Here are the details from the Cucumber 1.1 changelog: +----------------+ Tue May 14 11:11:10 EDT 2019 net-general/mariadb upgraded from 10.1.38 to 10.1.40 to fix two security vulnerabilities: CVE-2019-2614 and CVE-2019-2627, both of which allowed for a high privileged attacker with network access to cause a denial of service via a hang or frequently repeatable crash. For more information see: https://mariadb.com/kb/en/library/mariadb-10139-release-notes/ https://security.cucumberlinux.com/security/details.php?id=699 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614 https://security.cucumberlinux.com/security/details.php?id=700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627 multilib/net-general/mariadb-lib_i686 upgraded from 10.1.38 to 10.1.40 (x86_64 only) * SECURITY FIX * +----------------+ ------------------------------------------------------------------------ CLD and CVE Information This update is associated with the following Cucumber Linux Deficiency (CLD) and CVE numbers: * CLD-699 [CVE-2019-2614] (https://security.cucumberlinux.com/security/details.php?id=699) * CLD-700 [CVE-2019-2627] (https://security.cucumberlinux.com/security/details.php?id=700) More information about these CLDs can be found at their respective pages on the Cucumber Linux Security Advisory Tracker (these are the URLs in parenthesis above). ------------------------------------------------------------------------ Installing the Update The updated package can be installed via Pickle by running the following commands (as root): # pickle --update # pickle Make sure mariadb is selected on the update list, and then select Ok. Pickle will then install the updated package. If you prefer to download the updated package manually, it can be found on the mirror at http://mirror.cucumberlinux.com/cucumber/. ------------------------------------------------------------------------ The Cucumber Linux Security Team cuc...@li... <mailto:cuc...@li...> https://www.cucumberlinux.com/security.php |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X