ALSA-2022:1556

[ALSA-2022:1556] Moderate: mariadb:10.3 security and bug fix update

Type:

security

Severity:

moderate

Release date:

2022-04-28

Description:

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. 

The following packages have been upgraded to a later upstream version: mariadb (10.3.32), galera (25.3.34). (BZ#2050543)

Security Fix(es):

* mysql: Server: DML unspecified vulnerability (CPU Apr 2021) (CVE-2021-2154)

* mysql: Server: DML unspecified vulnerability (CPU Apr 2021) (CVE-2021-2166)

* mysql: InnoDB unspecified vulnerability (CPU Jul 2021) (CVE-2021-2372)

* mysql: InnoDB unspecified vulnerability (CPU Jul 2021) (CVE-2021-2389)

* mysql: InnoDB unspecified vulnerability (CPU Oct 2021) (CVE-2021-35604)

* mariadb: Integer overflow in sql_lex.cc integer leading to crash (CVE-2021-46667)

* mariadb: Crash in get_sort_by_table() in subquery with ORDER BY having outer ref (CVE-2021-46657)

* mariadb: save_window_function_values triggers an abort during IN subquery (CVE-2021-46658)

* mariadb: Crash in set_var.cc via certain UPDATE queries with nested subqueries (CVE-2021-46662)

* mariadb: Crash caused by mishandling of a pushdown from a HAVING clause to a WHERE clause (CVE-2021-46666)

* mariadb: No password masking in audit log when using ALTER USER  IDENTIFIED BY  command (BZ#1981332)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* mariadb:10.3/mariadb: /etc/security/user_map.conf getting overwritten with mariadb-server upgrade (BZ#2050514)

* MariaDB logrotate leads to "gzip: stdin: file size changed while zipping" (BZ#2050532)

* Crash: WSREP: invalid state ROLLED_BACK (FATAL) (BZ#2050533)

* Galera doesn't work without 'procps-ng' package MariaDB-10.3 (BZ#2050550)

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	mariadb-oqgraph-engine-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	0d8dc13d8162443cf5b2165fcd2f798b1b6accf9a4c8fe66e9da5f1a0c908750
aarch64	mariadb-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	0f0668b9658285e69c4b0f523eb8ef7122093c3fbf8a296178169baf852852dc
aarch64	galera-25.3.34-4.module_el8.6.0+2867+72759d2f.aarch64.rpm	2ce8000815e41cb5a04eaac5eae4db6b4a5a9aef1e81e45805756ad0a73bf2df
aarch64	mariadb-gssapi-server-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	34de797b5dee7550b9e44951a16c4ce09c2a3b2b63cc579f944967e312ba5487
aarch64	mariadb-devel-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	45bebe624723cecaa8a7fd208b6020ec822235b779be50aa1a0806160d59b1f8
aarch64	mariadb-server-utils-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	53014bc781aed7d208ec081ece4574e7652b367dd7d45f9c49a24f1f4d79e2ce
aarch64	mariadb-server-galera-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	92f78796a8b99311d53046969bc48c574f7bd9d3c9133cce4f6bd0a6e1efdaf1
aarch64	mariadb-embedded-devel-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	b9264205ae09c9643dc31d7501a957d7e8d81f0f885f20ab6dfdb4e52e2ce410
aarch64	mariadb-test-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	ba7d97e23afb9fa82dbb0f9c27ff496240af5891bb6fad46e24a885ae17ef122
aarch64	mariadb-common-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	cc3f3d95d33b0d7fd9f139040c4ef98b0233b63adbe182c30436ff1b47b6b255
aarch64	mariadb-server-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	d495a9dc87a3c8138f4fd5cad761080a23dde7d05bafb76233502bb53afdcb1f
aarch64	Judy-1.0.5-18.module_el8.6.0+2761+593e5e59.aarch64.rpm	d6a69d3a722b634e22140ac45951705586f6eacae111d6eddf8f0783a90dff0e
aarch64	mariadb-errmsg-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	f15e4ddd2ac1f9e51ac5bf89b046dca1cb650958af92a19fd67534a6ae04c65d
aarch64	mariadb-backup-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	fbdcd2d1e5ecde70abf4590dd6ae765cfddaa41a288181129c8435b5c1174de2
aarch64	mariadb-embedded-10.3.32-2.module_el8.6.0+2867+72759d2f.aarch64.rpm	fd03ec7b2d900be284b6601225efa7ba7e5bb56ccabc49ce4eea0b399842e4df
ppc64le	mariadb-backup-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	074a8210d82a726ff5bb5b1658db2c00c322ae47e131814cde9827c1945a6994
ppc64le	mariadb-embedded-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	07d8ccfcca554f39a0cd99787f864b3b4aed8ed31502011b7483a9da9eb08619
ppc64le	mariadb-server-galera-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	26f283c197cccb531e17e5d511ce3d511c27fe4e5e26906276b34118ed6847ec
ppc64le	Judy-1.0.5-18.module_el8.6.0+2867+72759d2f.ppc64le.rpm	42f8c8f57ae6c40142f826e44310a4fe8b0a5e996c2251190b01c9ea7112babe
ppc64le	galera-25.3.34-4.module_el8.6.0+2867+72759d2f.ppc64le.rpm	5cbaa06c69b14f63d02e8aa2d2141aef172cb0fb8d371460afa08832e1783b3f
ppc64le	mariadb-common-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	5de93249fda7dacdbb254ff154012bab74efc07396d1d0b38e2541b284b88b75
ppc64le	mariadb-server-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	71cfac4641c4332b87f385423767551e50fc3d72c603b571e77a867d32bc03aa
ppc64le	mariadb-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	811e0862724282d9b4b7b2b30c9e51f237604f629c990aab2a9ae2f573ade881
ppc64le	mariadb-server-utils-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	8504000b450d9e1f3a05bd29b05f6d721599be072977be9ebba7f5e7f2dbcdb4
ppc64le	mariadb-devel-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	a44bdfe3da75b413f655b72e111bedb118c4850fb6ea9d58a2f6b1d8ad40f112
ppc64le	mariadb-gssapi-server-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	b38f4e00e5bb80f23d16e1335d0b4714a63c1cfc30f9fc6c0967e066a8ce4fde
ppc64le	mariadb-embedded-devel-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	c5438f38c8e841f1d14ec07bd039dc1fe7bcd2ec436cff2a666bc919de71af61
ppc64le	mariadb-oqgraph-engine-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	ceb46a1299aebfcb0c580679455adbc05f8e52e74edb8a026ad5cbc96eadd0f7
ppc64le	mariadb-errmsg-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	d5c3b44c60e9db02e323c8c33d8d369f91b409f15aead4a178ec0416a0acbce4
ppc64le	mariadb-test-10.3.32-2.module_el8.6.0+2867+72759d2f.ppc64le.rpm	fa35cb8dd4a0c75bc12edffcde154bc7ecfcaf5289b842873b03ca9bd94b49f0
x86_64	mariadb-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	0a5dfe2d3e018e2a11e04ad144082abeba587ae64b70d212f7fb4fa3c0721e76
x86_64	mariadb-server-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	3ed124aaf242b10ba808b4e2be1599c6cf54bd8bb56d27120057effe4f8cc574
x86_64	mariadb-common-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	413cbeb17277eed78ef5148299725edfd90db86d0ef6db50b0a683aca14080cf
x86_64	mariadb-errmsg-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	4b851ea3b2bf2ec5c1ee23d16b3c19c1fb66114af67997f4f335c491cc20f98e
x86_64	mariadb-gssapi-server-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	5ac53ddee78378f34570c1e5af99260552fe0ff1808d9f4039ad38066bba921d
x86_64	mariadb-embedded-devel-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	65f6bfcb09c928e742ff20038d5126a0c7087c7f4ef3c8de3c2c80daa8da4bb8
x86_64	mariadb-server-utils-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	6e7bff53a46eb919d305279bc56c89bcf71e6ac25cdd693aee5cd2c06825a4dc
x86_64	mariadb-backup-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	83c4c2d5ce88cc630fd384badd60e9f80c539fc3df8fe882e3482c846188790c
x86_64	mariadb-devel-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	932317c2b29265247ac5c2104a11f3c00eb6d610ac2345b1eff702cc146ee8eb
x86_64	mariadb-server-galera-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	a5b98f84f19db6f25afc5f10891e83b6df8ee11d15fdb5e1ad6321e75bfef7f5
x86_64	mariadb-test-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	b89a19db333bcf802d0943b5f2b6e295a1564313f00b9654df621e9aba3c1506
x86_64	mariadb-embedded-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	c46ad0d51bea540b3a6480e4c5938ffc57b9bb508a35bf07160fe0650f5da9f4
x86_64	Judy-1.0.5-18.module_el8.5.0+2632+14ced695.x86_64.rpm	d02fc1640496c6b160680668c7082350371dc946b267813ab6d5de6615c738f1
x86_64	galera-25.3.34-4.module_el8.5.0+2632+14ced695.x86_64.rpm	e3156ae212bd7cb5cb659d38d333c5b425513c28324a29bb809ea78243c7d398
x86_64	mariadb-oqgraph-engine-10.3.32-2.module_el8.5.0+2632+14ced695.x86_64.rpm	f30aca8788b54b51ce8fa6647dc746131b64d6ab7de6cf1cd6d197087d639230

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.