Showing 1 - 8 of 8

CVE-2020-15180

Status Candidate

Overview

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.

Related Files

Red Hat Security Advisory 2020-5665-01: Posted Dec 22, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5665-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.; tags | advisory; systems | linux, redhat; advisories | CVE-2019-2938, CVE-2019-2974, CVE-2020-13249, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789, CVE-2020-14812, CVE-2020-15180, CVE-2020-2574, CVE-2020-2752, CVE-2020-2760, CVE-2020-2780, CVE-2020-2812, CVE-2020-2814; SHA-256 | 35488e2ff382b54b2233116cfe79c0cb02412e4c89c107f20083f7f19e77afdf; Download | Favorite | View

Red Hat Security Advisory 2020-5663-01: Posted Dec 22, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5663-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.; tags | advisory; systems | linux, redhat; advisories | CVE-2019-2510, CVE-2019-2537, CVE-2019-2614, CVE-2019-2627, CVE-2019-2628, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2758, CVE-2019-2805, CVE-2019-2938, CVE-2019-2974, CVE-2020-13249, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789, CVE-2020-14812, CVE-2020-15180, CVE-2020-2574, CVE-2020-2752, CVE-2020-2760, CVE-2020-2780, CVE-2020-2812, CVE-2020-2814, CVE-2020-2922; SHA-256 | 325b2193e35e6aeaf2be8317c7a2f29491c2220871301b1c5fa69c0083ade4e0; Download | Favorite | View

Red Hat Security Advisory 2020-5654-01: Posted Dec 22, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5654-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.; tags | advisory; systems | linux, redhat; advisories | CVE-2019-2938, CVE-2019-2974, CVE-2020-13249, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789, CVE-2020-14812, CVE-2020-15180, CVE-2020-2574, CVE-2020-2752, CVE-2020-2760, CVE-2020-2780, CVE-2020-2812, CVE-2020-2814; SHA-256 | aeec0d650d052441b938277009d871bcdf13c0953d23012e89d2bbcf9eb4ae78; Download | Favorite | View

Red Hat Security Advisory 2020-5500-01: Posted Dec 16, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5500-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.; tags | advisory; systems | linux, redhat; advisories | CVE-2019-2938, CVE-2019-2974, CVE-2020-13249, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789, CVE-2020-14812, CVE-2020-15180, CVE-2020-2574, CVE-2020-2752, CVE-2020-2760, CVE-2020-2780, CVE-2020-2812, CVE-2020-2814; SHA-256 | 865b8f85693d61a9197547261f7dcf0d2884e41a426e2b65cfc1abc579c105a9; Download | Favorite | View

Red Hat Security Advisory 2020-5379-01: Posted Dec 8, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5379-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Galera is a synchronous multi-master cluster for MariaDB.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-15180; SHA-256 | 987fc6352ad4543fccbee7d27a5be317761dfe825bda8e3c12f82b0211c01e75; Download | Favorite | View

Red Hat Security Advisory 2020-5246-01: Posted Nov 30, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5246-01 - MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL.; tags | advisory; systems | linux, redhat; advisories | CVE-2019-2614, CVE-2019-2627, CVE-2019-2628, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2758, CVE-2019-2805, CVE-2019-2938, CVE-2019-2974, CVE-2020-13249, CVE-2020-14765, CVE-2020-14776, CVE-2020-14789, CVE-2020-14812, CVE-2020-15180, CVE-2020-2574, CVE-2020-2752, CVE-2020-2760, CVE-2020-2780, CVE-2020-2812, CVE-2020-2814, CVE-2020-2922; SHA-256 | b7558db730c8dbbbd2b623c9963183f5e936705832023cd7522e2827f5d16dc3; Download | Favorite | View

Gentoo Linux Security Advisory 202011-14: Posted Nov 11, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202011-14 - A vulnerability has been discovered in MariaDB which could result in the arbitrary execution of code. Versions less than 10.5.6 are affected.; tags | advisory, arbitrary; systems | linux, gentoo; advisories | CVE-2020-15180; SHA-256 | e8964319575a5fd75c91c70fed1bb5d7380caf7d6c3bb395749bf42168c34776; Download | Favorite | View

Debian Security Advisory 4776-1: Posted Oct 28, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4776-1 - A security issue was discovered in the MariaDB database server.; tags | advisory; systems | linux, debian; advisories | CVE-2020-15180; SHA-256 | c303d654bd40db8682aafd9f26d8cb2740bc2beaf7a376153c1113750c70c6da; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 294 files
Ubuntu 64 files
Debian 24 files
Apple 14 files
LiquidWorm 12 files
Gentoo 8 files
Google Security Research 4 files
Andrey Stoykov 3 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,171)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,070)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,426)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,010)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2020-15180

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems