-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3722-1 [email protected] https://www.debian.org/lts/security/ Bastien ROUCARIÃS January 27, 2024 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : mariadb-10.3 Version : 1:10.3.39-0+deb10u2 CVE ID : CVE-2023-22084 Debian Bug : 1055034 A vulnerability was fixed in MariaDB, a database suite. This vulnerability allowed a high privileged attacker with network access to compromise a MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash. The main risk was a complete DOS of the sever. For Debian 10 buster, this problem has been fixed in version 1:10.3.39-0+deb10u2. We recommend that you upgrade your mariadb-10.3 packages. For the detailed security status of mariadb-10.3 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/mariadb-10.3 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAmW0tNkACgkQADoaLapB CF9j0A/9FQ0vBpUX5qeB7MxllrAAm8buelLOF14D1XWlv3vTKisr934kVpWs2RxV U5onesXf2WS7b8KU40HTaUrz2XatRYHhbSgj3qT4L8fl1gSRdT/tfPrty8HO4JwJ TT+2/Z1D6ijmanYgNjrM+Uairw5z8Tq7Z3EXDYVkT1fbAJHzhAnJ0B1vV/nrPHVw cbRT3FrpFkvlaAUmwLeGO5wo9YdDyTD9wFM+F3VKd6ZwKqIDvpX4PyHJeVsfEJCO cnMDJmiGYuzwJo7Yxa0WsFjFNunsOeGTmobTq7DDjPM4cegryddy/+v6pHJ+h/t6 b4tWzhgtVR/Ktu6HqW1oOaVxN4PFOc6WO8JXZ6Q8wAk1je1Ml0lTgbr5Psa508Tg Id03ZWGXfElPMIZzkYcw2Zf9eXtZ+KT7f23aiPUhnuazQVZyTgNMYmaYMAY5eB4B VtNHn3pQ7S/xz11QeODPCuGirBh2F5vQ75wZwM9zIF1XwJaYxa+8ZIXhMZSkBYus CIecv7jEYkyWsgvJqbfCZIq/hxXrRzLvHxufNBmVsXH3Jz1mzWduMarkbUh6bpme AKV6jYQs+0j8waLrNY3Yu+T4MExtqkjdNkBrf4452RZmPNoPgm4koG4Gm3AODfwd Wry2x4BaT3/Q/nG3EoMXRkiT9wo48B5nDRrIL1IW8K+E4lu7W6Q= =YDkl -----END PGP SIGNATURE-----
