ALSA-2021:1242

[ALSA-2021:1242] Important: mariadb:10.3 and mariadb-devel:10.3 security update

Type:

security

Severity:

important

Release date:

2023-03-13

Description:

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. 
The following packages have been upgraded to a later upstream version: mariadb (10.3.28), galera (25.3.32).
Security Fix(es):
* mariadb: writable system variables allows a database user with SUPER privilege to execute arbitrary code as the system mysql user (CVE-2021-27928)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	asio-devel-1.10.8-7.module_el8.6.0+2867+72759d2f.aarch64.rpm	63fc351fbcd03176401f95f16cebd29b23066a2a8c21696f72a9f8c2e916b4b3
aarch64	Judy-devel-1.0.5-18.module_el8.6.0+2867+72759d2f.aarch64.rpm	93d0e21e8df7e2b686fe949792b8587fbe3436ee13cc46cd539a1a73684fa5d4
aarch64	Judy-1.0.5-18.module_el8.6.0+2761+593e5e59.aarch64.rpm	d6a69d3a722b634e22140ac45951705586f6eacae111d6eddf8f0783a90dff0e
i686	mariadb-server-galera-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	20574fadeca5b5071171321238dbdd232898befa861afcf495331a62d47d99ce
i686	Judy-devel-1.0.5-18.module_el8.6.0+3072+3c630e87.i686.rpm	26cc45d4a68d037635272fe58a4b58111e7092090dde4892c8a0915c7945959c
i686	mariadb-devel-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	2c88fcd09a22585da60a3562df2f86492331cbb9431367dae79b0f77b445b7e7
i686	mariadb-embedded-devel-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	31be9c84d51698eae7a8b4fee1ef827d3099c3b2da2b09100591a75d4be8c751
i686	mariadb-server-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	40173bd1a8be55ac4932bfbe020044a16de971d61f47f993572e1e9d26d87439
i686	mariadb-errmsg-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	4950619d3d30ebaf2862f4d78b227673e703f8814499ff063b96624becdc9486
i686	mariadb-test-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	4f486efa3dc5e1d30926c96bf57d7fe79f9fa0b2a8bb96863fad67deb873942a
i686	Judy-1.0.5-18.module_el8.3.0+2028+5e3224e9.i686.rpm	679dc41d7df4dcbac8317331894e44fd329abd01f2b17411a11415e9b900eb17
i686	mariadb-backup-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	6ae35a41d8a9f233327c93c115e331da49d7f35536c52d74e1e2030dd5176f6c
i686	asio-devel-1.10.8-7.module_el8.6.0+3072+3c630e87.i686.rpm	6e5e3590bfbf40baec2586cb5a9e101027ed20ef90f1bb37950f2615a8dbe1e5
i686	mariadb-gssapi-server-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	77d95cd405e014220c772074a9b6a75e9a77a4ff75dfc0738c2c8e8805b72114
i686	asio-devel-1.10.8-7.module_el8.6.0+2867+72759d2f.i686.rpm	88e9eba5dcfb8acb44d20cdb000f5b095ac7256d64dccb97b2ce45d120dec00a
i686	mariadb-common-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	8fe7eb2448a30431436a2c80e7017d5c8c3200004fa3a5577be5a8f4a69480df
i686	Judy-devel-1.0.5-18.module_el8.6.0+2867+72759d2f.i686.rpm	924d2da02bed3a9f00f03e39aeab60e24385ec747f3f254677f1208df644b047
i686	mariadb-server-utils-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	9a5b0a778fe5d7a6975caa8bc19acf5e6bc0ae68ea9484bf5d7159698c56f9db
i686	mariadb-oqgraph-engine-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	a3efbf929d890a29441db7a136e1bbdde31b3a2c3bdf051cdc081732bdab97c0
i686	Judy-devel-1.0.5-18.module_el8.3.0+2028+5e3224e9.i686.rpm	a5d4175218d19bd0a7d766a871e269563144014b89cf744902b3a737cf6e2a91
i686	mariadb-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	deb5f50ad825e24ba591a119bdc0779b788aa2a0c019273f9d3e202342c4abff
i686	galera-25.3.32-1.module_el8.3.0+2177+7adc332a.i686.rpm	f9dc54e0f2eeb504be42176a4698123b00cc80cf7f937cee2d34f1db4d1374b6
i686	mariadb-embedded-10.3.28-1.module_el8.3.0+2177+7adc332a.i686.rpm	ff64bdfd58c2825302b08f0c3248ce01976c1113d326da6075860324067e5447
ppc64le	Judy-1.0.5-18.module_el8.6.0+2867+72759d2f.ppc64le.rpm	42f8c8f57ae6c40142f826e44310a4fe8b0a5e996c2251190b01c9ea7112babe
ppc64le	Judy-devel-1.0.5-18.module_el8.6.0+2867+72759d2f.ppc64le.rpm	a3a17bcb9b6e948e66e8e1479c1b753ec633f43f0060f5f9ad72b130ae8222b3
ppc64le	asio-devel-1.10.8-7.module_el8.6.0+2867+72759d2f.ppc64le.rpm	dabde2db7df7f855e7ef29181e741dff20806bc82588ff79c07c41c466c049d9
x86_64	asio-devel-1.10.8-7.module_el8.6.0+2867+72759d2f.x86_64.rpm	30c27f03d4f8d6dd3e62f18b968eb501ea98bbaf2387ec1fe725e24e11a3a99f
x86_64	Judy-1.0.5-18.module_el8.5.0+2632+14ced695.x86_64.rpm	d02fc1640496c6b160680668c7082350371dc946b267813ab6d5de6615c738f1
x86_64	Judy-devel-1.0.5-18.module_el8.3.0+2028+5e3224e9.x86_64.rpm	fa6951b6cf8e47a6ab6d2489273fc502e21622ffbe15a4088d68d90c914529fd

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.