{"id":"ALSA-2022:1556","summary":"Moderate: mariadb:10.3 security and bug fix update","details":"MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. \n\nThe following packages have been upgraded to a later upstream version: mariadb (10.3.32), galera (25.3.34). (BZ#2050543)\n\nSecurity Fix(es):\n\n* mysql: Server: DML unspecified vulnerability (CPU Apr 2021) (CVE-2021-2154)\n\n* mysql: Server: DML unspecified vulnerability (CPU Apr 2021) (CVE-2021-2166)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jul 2021) (CVE-2021-2372)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jul 2021) (CVE-2021-2389)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2021) (CVE-2021-35604)\n\n* mariadb: Integer overflow in sql_lex.cc integer leading to crash (CVE-2021-46667)\n\n* mariadb: Crash in get_sort_by_table() in subquery with ORDER BY having outer ref (CVE-2021-46657)\n\n* mariadb: save_window_function_values triggers an abort during IN subquery (CVE-2021-46658)\n\n* mariadb: Crash in set_var.cc via certain UPDATE queries with nested subqueries (CVE-2021-46662)\n\n* mariadb: Crash caused by mishandling of a pushdown from a HAVING clause to a WHERE clause (CVE-2021-46666)\n\n* mariadb: No password masking in audit log when using ALTER USER \u003cuser\u003e IDENTIFIED BY \u003cpassword\u003e command (BZ#1981332)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* mariadb:10.3/mariadb: /etc/security/user_map.conf getting overwritten with mariadb-server upgrade (BZ#2050514)\n\n* MariaDB logrotate leads to \"gzip: stdin: file size changed while zipping\" (BZ#2050532)\n\n* Crash: WSREP: invalid state ROLLED_BACK (FATAL) (BZ#2050533)\n\n* Galera doesn't work without 'procps-ng' package MariaDB-10.3 (BZ#2050550)","modified":"2026-01-30T02:00:01.520075Z","published":"2022-04-26T13:50:43Z","related":["CVE-2021-2154","CVE-2021-2166","CVE-2021-2372","CVE-2021-2389","CVE-2021-35604","CVE-2021-46657","CVE-2021-46658","CVE-2021-46662","CVE-2021-46666","CVE-2021-46667"],"references":[{"type":"ADVISORY","url":"https://errata.almalinux.org/8/ALSA-2022-1556.html"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-2154"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-2166"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-2372"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-2389"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-35604"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-46657"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-46658"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-46662"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-46666"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2021-46667"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2022-21451"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2022-27385"}],"affected":[{"package":{"name":"Judy","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/Judy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.5-18.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"Judy","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/Judy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.5-18.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"Judy","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/Judy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.5-18.module_el8.6.0+2761+593e5e59"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"galera","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"25.3.34-4.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"galera","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"25.3.34-4.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-backup","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-backup","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-common","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-common","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-embedded","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-embedded","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-embedded-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-embedded-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-embedded-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-embedded-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-errmsg","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-errmsg","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-gssapi-server","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-gssapi-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-gssapi-server","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-gssapi-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-oqgraph-engine","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-oqgraph-engine","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server-galera","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server-galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server-galera","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server-galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server-utils","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-server-utils","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-server-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-test","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.5.0+2632+14ced695"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}},{"package":{"name":"mariadb-test","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.3.32-2.module_el8.6.0+2867+72759d2f"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1556.json"}}],"schema_version":"1.7.3"}