This bug was fixed in the package mariadb-10.3 - 1:10.3.29-0ubuntu0.20.10.1
--------------- mariadb-10.3 (1:10.3.29-0ubuntu0.20.10.1) groovy-security; urgency=medium * SECURITY UPDATE: New upstream version 10.3.29 includes fixes for the following security vulnerabilities (LP: #1926926): - CVE-2021-2154 - CVE-2021-2166 * Previous release 10.3.28 included fixes for: - CVE-2021-27928 * Previous release 10.3.26 included fixes for: - CVE-2020-14765 - CVE-2020-14776 - CVE-2020-14789 - CVE-2020-14812 - CVE-2020-28912 - CVE-2021-2194 * Previous release 10.3.24 included fixes for: - CVE-2021-2022 * Drop --libmysqld-libs patcha applied upstream * Drop patch obsoleted by test file removal in upstream (MDEV-22653) * Drop file removed upstream (MDEV-24586) * Update symbols to include new one from MariaDB Client 3.1.13 -- Otto Kekäläinen <o...@debian.org> Sun, 09 May 2021 13:47:12 -0700 ** Changed in: mariadb-10.3 (Ubuntu Groovy) Status: New => Fix Released ** Changed in: mariadb-10.3 (Ubuntu Focal) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1926926 Title: CVE-2021-27928 et al affects MariaDB in Ubuntu To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.5/+bug/1926926/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs