Mandriva Linux Security Advisory : mariadb (MDVSA-2015:091)

This script is Copyright (C) 2015 Tenable Network Security, Inc.


Synopsis :

The remote Mandriva Linux host is missing one or more security
updates.

Description :

This update provides MariaDB 5.5.42, which fixes several security
issues and other bugs. Please refer to the Oracle Critical Patch
Update Advisories and the Release Notes for MariaDB for further
information regarding the security vulnerabilities.

Additionally the jemalloc packages is being provided as it was
previousely provided with the mariadb source code, built and used but
removed from the mariadb source code since 5.5.40.

See also :

http://www.nessus.org/u?ef1fc2a6
http://www.nessus.org/u?17c46362
http://www.nessus.org/u?c02f1515
http://www.nessus.org/u?6dcc7b47
https://mariadb.com/kb/en/mariadb/mariadb-5535-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5536-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5537-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5538-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5539-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5540-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5541-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5542-release-notes/

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 8.0
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:C)