Branch p10 update bulletin.

Package mariadb updated to version 10.6.17-alt2 for branch p10 in task 341405.

Published: 2023-10-17

BDU:2023-06913

Уязвимость компонента InnoDB системы управления базами данных MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.9) Vector: AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-22084

Published: 2023-10-18
Modified: 2024-11-21

CVE-2023-22084

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

References:

Version: 2.1.0

Branch p10 update on 2024-03-04

ALT-BU-2024-3361-1

ALT-PU-2024-3002-2

Closed vulnerabilities

BDU:2023-06913

CVE-2023-22084