Fedora 27 : 3:mariadb (2018-192148f4ff)

High Nessus Plugin ID 119154

Synopsis

The remote Fedora host is missing a security update.

Description

**MariaDB 10.2.19**

Release notes :

https://mariadb.com/kb/en/library/mariadb-10219-release-notes/

CVEs fixed :

CVE-2018-3282 CVE-2016-9843 CVE-2018-3174 CVE-2018-3143 CVE-2018-3156 CVE-2018-3251 CVE-2018-3185 CVE-2018-3277 CVE-2018-3162 CVE-2018-3173 CVE-2018-3200 CVE-2018-3284

Aditional notes :

As per the upstream MariaDB Deprecation Policy, this will be the last release of MariaDB 10.2 supporting Fedora 27

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected 3:mariadb package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2018-192148f4ff

Plugin Details

Severity: High

ID: 119154

File Name: fedora_2018-192148f4ff.nasl

Version: 1.1

Type: local

Agent: unix

Published: 2018/11/27

Modified: 2018/11/27

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS v3.0

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:3:mariadb, cpe:/o:fedoraproject:fedora:27

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2018/11/27

Reference Information

CVE: CVE-2016-9843, CVE-2018-3143, CVE-2018-3156, CVE-2018-3162, CVE-2018-3173, CVE-2018-3174, CVE-2018-3185, CVE-2018-3200, CVE-2018-3251, CVE-2018-3277, CVE-2018-3282, CVE-2018-3284