SB2017071702 - Slackware Linux update for mariadb
Published: July 17, 2017
Security Bulletin ID
SB2017071702
Severity
Low
Patch available
YES
Number of vulnerabilities
5
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 secuirty vulnerabilities.
1) Security restrictions bypass (CVE-ID: CVE-2017-3308)
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.The weakness exists in MySQL Server due to improper security restrictions. A remote attacker can cause the service to crash.
2) Security restrictions bypass (CVE-ID: CVE-2017-3309)
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.The weakness exists in MySQL Server due to improper security restrictions. A remote attacker can cause the service to crash.
3) Security restrictions bypass (CVE-ID: CVE-2017-3453)
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.The weakness exists in MySQL Server due to improper security restrictions. A remote attacker can cause the service to crash.
4) Security restrictions bypass (CVE-ID: CVE-2017-3456)
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.The weakness exists in MySQL Server due to improper security restrictions. A remote attacker can cause the service to crash.
5) Security restrictions bypass (CVE-ID: CVE-2017-3464)
The vulnerability allows a remote authenticated attacker to write arbitrary files on the target system.The weakness exists in MySQL Server due to improper security restrictions. A remote attacker can update, insert or delete some of MySQL Server accessible data.
Remediation
Install update from vendor's website.