{"affected":[{"ecosystem_specific":{"binaries":[{"libmariadb-devel":"3.1.2-lp151.3.3.1","libmariadb3":"3.1.2-lp151.3.3.1","libmariadb3-32bit":"3.1.2-lp151.3.3.1","libmariadb_plugins":"3.1.2-lp151.3.3.1","libmariadbprivate":"3.1.2-lp151.3.3.1","libmysqld-devel":"10.2.25-lp151.2.3.1","libmysqld19":"10.2.25-lp151.2.3.1","mariadb":"10.2.25-lp151.2.3.1","mariadb-bench":"10.2.25-lp151.2.3.1","mariadb-client":"10.2.25-lp151.2.3.1","mariadb-errormessages":"10.2.25-lp151.2.3.1","mariadb-galera":"10.2.25-lp151.2.3.1","mariadb-test":"10.2.25-lp151.2.3.1","mariadb-tools":"10.2.25-lp151.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"mariadb","purl":"pkg:rpm/opensuse/mariadb&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"10.2.25-lp151.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libmariadb-devel":"3.1.2-lp151.3.3.1","libmariadb3":"3.1.2-lp151.3.3.1","libmariadb3-32bit":"3.1.2-lp151.3.3.1","libmariadb_plugins":"3.1.2-lp151.3.3.1","libmariadbprivate":"3.1.2-lp151.3.3.1","libmysqld-devel":"10.2.25-lp151.2.3.1","libmysqld19":"10.2.25-lp151.2.3.1","mariadb":"10.2.25-lp151.2.3.1","mariadb-bench":"10.2.25-lp151.2.3.1","mariadb-client":"10.2.25-lp151.2.3.1","mariadb-errormessages":"10.2.25-lp151.2.3.1","mariadb-galera":"10.2.25-lp151.2.3.1","mariadb-test":"10.2.25-lp151.2.3.1","mariadb-tools":"10.2.25-lp151.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"mariadb-connector-c","purl":"pkg:rpm/opensuse/mariadb-connector-c&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.1.2-lp151.3.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for mariadb and mariadb-connector-c fixes the following issues:\n\nmariadb:\n\n- Update to version 10.2.25 (bsc#1136035)\n- CVE-2019-2628: Fixed a remote denial of service by an privileged attacker (bsc#1136035).\n- CVE-2019-2627: Fixed another remote denial of service by an privileged attacker (bsc#1136035).\n- CVE-2019-2614: Fixed a potential remote denial of service by an privileged attacker (bsc#1136035).\n- Fixed reading options for multiple instances if my${INSTANCE}.cnf is used (bsc#1132666)\n\nmariadb-connector-c:\n\n- Update to version 3.1.2 (bsc#1136035)\n- Moved libmariadb.pc from /usr/lib/pkgconfig to /usr/lib64/pkgconfig for x86_64 (bsc#1126088) \n\nThis update was imported from the SUSE:SLE-15:Update update project.","id":"openSUSE-SU-2019:1913-1","modified":"2019-08-15T09:47:50Z","published":"2019-08-15T09:47:50Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RDO2MTJJEZTLDADTA3HBUUS3EZQVKVCI/#RDO2MTJJEZTLDADTA3HBUUS3EZQVKVCI"},{"type":"REPORT","url":"https://bugzilla.suse.com/1126088"},{"type":"REPORT","url":"https://bugzilla.suse.com/1132666"},{"type":"REPORT","url":"https://bugzilla.suse.com/1136035"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-2614"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-2627"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-2628"}],"related":["CVE-2019-2614","CVE-2019-2627","CVE-2019-2628"],"summary":"Security update for mariadb, mariadb-connector-c","upstream":["CVE-2019-2614","CVE-2019-2627","CVE-2019-2628"]}