{"affected":[{"ecosystem_specific":{"binaries":[{"libmysqlclient-devel":"10.0.28-20.16.2","libmysqlclient18":"10.0.28-20.16.2","libmysqlclient18-32bit":"10.0.28-20.16.2","libmysqlclient_r18":"10.0.28-20.16.2","libmysqld-devel":"10.0.28-20.16.2","libmysqld18":"10.0.28-20.16.2","mariadb":"10.0.28-20.16.2","mariadb-client":"10.0.28-20.16.2","mariadb-errormessages":"10.0.28-20.16.2","mariadb-tools":"10.0.28-20.16.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12","name":"mariadb","purl":"pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"10.0.28-20.16.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libmysqlclient-devel":"10.0.28-20.16.2","libmysqlclient18":"10.0.28-20.16.2","libmysqlclient18-32bit":"10.0.28-20.16.2","libmysqlclient_r18":"10.0.28-20.16.2","libmysqld-devel":"10.0.28-20.16.2","libmysqld18":"10.0.28-20.16.2","mariadb":"10.0.28-20.16.2","mariadb-client":"10.0.28-20.16.2","mariadb-errormessages":"10.0.28-20.16.2","mariadb-tools":"10.0.28-20.16.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12-LTSS","name":"mariadb","purl":"pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"10.0.28-20.16.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis mariadb update to version 10.0.28 fixes the following issues (bsc#1008318):\n\nSecurity fixes:\n- CVE-2016-8283: Unspecified vulnerability in subcomponent Types (bsc#1005582)\n- CVE-2016-7440: Unspecified vulnerability in subcomponent Encryption (bsc#1005581)\n- CVE-2016-5629: Unspecified vulnerability in subcomponent Federated (bsc#1005569)\n- CVE-2016-5626: Unspecified vulnerability in subcomponent GIS (bsc#1005566)\n- CVE-2016-5624: Unspecified vulnerability in subcomponent DML (bsc#1005564)\n- CVE-2016-5616: Unspecified vulnerability in subcomponent MyISAM (bsc#1005562)\n- CVE-2016-5584: Unspecified vulnerability in subcomponent Encryption (bsc#1005558)\n- CVE-2016-3492: Unspecified vulnerability in subcomponent Optimizer (bsc#1005555)\n- CVE-2016-6663: Privilege Escalation / Race Condition (bsc#1001367)\n\nBugfixes:\n- mysql_install_db can't find data files (bsc#1006539)\n- mariadb failing test sys_vars.optimizer_switch_basic (bsc#1003800)\n- Notable changes:\n  * XtraDB updated to 5.6.33-79.0\n  * TokuDB updated to 5.6.33-79.0\n  * Innodb updated to 5.6.33\n  * Performance Schema updated to 5.6.33\n- Release notes and upstream changelog:\n  * https://kb.askmonty.org/en/mariadb-10028-release-notes\n  * https://kb.askmonty.org/en/mariadb-10028-changelog\n","id":"SUSE-SU-2016:2932-1","modified":"2016-11-28T15:26:50Z","published":"2016-11-28T15:26:50Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20162932-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1001367"},{"type":"REPORT","url":"https://bugzilla.suse.com/1003800"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005555"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005558"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005562"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005564"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005566"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005569"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005581"},{"type":"REPORT","url":"https://bugzilla.suse.com/1005582"},{"type":"REPORT","url":"https://bugzilla.suse.com/1006539"},{"type":"REPORT","url":"https://bugzilla.suse.com/1008318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-3492"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5584"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5616"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5624"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5626"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5629"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-6663"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-7440"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-8283"}],"related":["CVE-2016-3492","CVE-2016-5584","CVE-2016-5616","CVE-2016-5624","CVE-2016-5626","CVE-2016-5629","CVE-2016-6663","CVE-2016-7440","CVE-2016-8283"],"summary":"Security update for mariadb","upstream":["CVE-2016-3492","CVE-2016-5584","CVE-2016-5616","CVE-2016-5624","CVE-2016-5626","CVE-2016-5629","CVE-2016-6663","CVE-2016-7440","CVE-2016-8283"]}