{"id":"ALPINE-CVE-2017-15365","details":"sql/event_data_objects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x before 5.7.19-29.22-3 allows remote authenticated users with SQL access to bypass intended access restrictions and replicate data definition language (DDL) statements to cluster nodes by leveraging incorrect ordering of DDL replication and ACL checking.","modified":"2026-03-09T01:08:45.283696Z","published":"2018-01-25T16:29:00.290Z","upstream":["CVE-2017-15365"],"references":[{"type":"ADVISORY","url":"https://security.alpinelinux.org/vuln/CVE-2017-15365"}],"affected":[{"package":{"name":"mariadb","ecosystem":"Alpine:v3.4","purl":"pkg:apk/alpine/mariadb?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.32-r0"}]}],"versions":["10.0.21-r0","10.0.21-r1","10.0.21-r2","10.1.11-r0","10.1.11-r1","10.1.12-r0","10.1.12-r1","10.1.13-r0","10.1.13-r1","10.1.14-r0","10.1.14-r1","10.1.14-r2","10.1.14-r3","10.1.17-r0","10.1.18-r0","10.1.19-r0","10.1.21-r0","10.1.22-r0","10.1.26-r0","10.1.8-r0","10.1.8-r1","10.1.9-r0","10.1.9-r1","10.1.9-r2","10.1.9-r3","5.5.41-r0","5.5.41-r1","5.5.41-r2","5.5.42-r0","5.5.42-r1","5.5.42-r2","5.5.42-r3","5.5.42-r4","5.5.43-r0","5.5.43-r1","5.5.43-r2","5.5.43-r3","5.5.43-r4","5.5.43-r5"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2017-15365.json"}},{"package":{"name":"mariadb","ecosystem":"Alpine:v3.5","purl":"pkg:apk/alpine/mariadb?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.32-r0"}]}],"versions":["10.0.21-r0","10.0.21-r1","10.0.21-r2","10.1.11-r0","10.1.11-r1","10.1.12-r0","10.1.12-r1","10.1.13-r0","10.1.13-r1","10.1.14-r0","10.1.14-r1","10.1.14-r2","10.1.14-r3","10.1.16-r0","10.1.17-r0","10.1.17-r1","10.1.18-r0","10.1.18-r1","10.1.19-r0","10.1.20-r0","10.1.21-r0","10.1.22-r0","10.1.26-r0","10.1.8-r0","10.1.8-r1","10.1.9-r0","10.1.9-r1","10.1.9-r2","10.1.9-r3","5.5.41-r0","5.5.41-r1","5.5.41-r2","5.5.42-r0","5.5.42-r1","5.5.42-r2","5.5.42-r3","5.5.42-r4","5.5.43-r0","5.5.43-r1","5.5.43-r2","5.5.43-r3","5.5.43-r4","5.5.43-r5"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2017-15365.json"}},{"package":{"name":"mariadb","ecosystem":"Alpine:v3.6","purl":"pkg:apk/alpine/mariadb?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.32-r0"}]}],"versions":["10.0.21-r0","10.0.21-r1","10.0.21-r2","10.1.11-r0","10.1.11-r1","10.1.12-r0","10.1.12-r1","10.1.13-r0","10.1.13-r1","10.1.14-r0","10.1.14-r1","10.1.14-r2","10.1.14-r3","10.1.16-r0","10.1.17-r0","10.1.17-r1","10.1.18-r0","10.1.18-r1","10.1.19-r0","10.1.20-r0","10.1.21-r0","10.1.22-r0","10.1.22-r1","10.1.26-r0","10.1.8-r0","10.1.8-r1","10.1.9-r0","10.1.9-r1","10.1.9-r2","10.1.9-r3","5.5.41-r0","5.5.41-r1","5.5.41-r2","5.5.42-r0","5.5.42-r1","5.5.42-r2","5.5.42-r3","5.5.42-r4","5.5.43-r0","5.5.43-r1","5.5.43-r2","5.5.43-r3","5.5.43-r4","5.5.43-r5"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2017-15365.json"}},{"package":{"name":"mariadb","ecosystem":"Alpine:v3.7","purl":"pkg:apk/alpine/mariadb?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.32-r0"}]}],"versions":["10.0.21-r0","10.0.21-r1","10.0.21-r2","10.1.11-r0","10.1.11-r1","10.1.12-r0","10.1.12-r1","10.1.13-r0","10.1.13-r1","10.1.14-r0","10.1.14-r1","10.1.14-r2","10.1.14-r3","10.1.16-r0","10.1.17-r0","10.1.17-r1","10.1.18-r0","10.1.18-r1","10.1.19-r0","10.1.20-r0","10.1.21-r0","10.1.22-r0","10.1.22-r1","10.1.22-r2","10.1.24-r0","10.1.26-r0","10.1.28-r0","10.1.28-r1","10.1.8-r0","10.1.8-r1","10.1.9-r0","10.1.9-r1","10.1.9-r2","10.1.9-r3","5.5.41-r0","5.5.41-r1","5.5.41-r2","5.5.42-r0","5.5.42-r1","5.5.42-r2","5.5.42-r3","5.5.42-r4","5.5.43-r0","5.5.43-r1","5.5.43-r2","5.5.43-r3","5.5.43-r4","5.5.43-r5"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2017-15365.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}