安全公告详情

NS-SA-2020-0068

2020-12-08 09:12:10

简介

moderate: lftp/mariadb security update

严重级别

moderate

主题

An update for lftp/mariadb is now available for NewStart CGSL MAIN 5.04/CGSL CORE 5.04.
NewStart Security has rated this update as having a security impact of moderate. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

详细描述

lftp: LFTP is a sophisticated ftp/http file transfer program. Like bash, it has job control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind.
mariadb: The mariadb-libs package provides the essential shared libraries for any MariaDB/MySQL client program or interface. You will need to install this package to use any other MariaDB package or any clients that need to connect to a MariaDB/MySQL server. MariaDB is a community developed branch of MySQL.


Security Fix(es):
lftp: It has been discovered that lftp does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker-controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system.(CVE-2018-10916)
lftp: bugfix
mariadb: ulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Pluggable Auth). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).(CVE-2019-2737)
mariadb: ulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).(CVE-2019-2739)
mariadb: ulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).(CVE-2019-2740)
mariadb: ulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).(CVE-2019-2805)
mariadb: ulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).(CVE-2020-2922)
mariadb: bugfix


Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 5.04.F25B5.

影响组件

  • lftp
  • mariadb

影响产品

  • CGSL MAIN 5.04
  • CGSL CORE 5.04

更新包

{"fix":[{"product":"CGSL MAIN 5.04","pkgs":[{"binary":["lftp-4.4.8-12.el7.cgslv5.0.2.gc0c267e.x86_64.rpm","lftp-debuginfo-4.4.8-12.el7.cgslv5.0.2.gc0c267e.x86_64.rpm","lftp-scripts-4.4.8-12.el7.cgslv5.0.2.gc0c267e.noarch.rpm"],"source":"lftp-4.4.8-12.el7.cgslv5.0.2.gc0c267e.src.rpm"},{"binary":["mariadb-5.5.65-1.el7.x86_64.rpm","mariadb-bench-5.5.65-1.el7.x86_64.rpm","mariadb-debuginfo-5.5.65-1.el7.x86_64.rpm","mariadb-devel-5.5.65-1.el7.x86_64.rpm","mariadb-embedded-5.5.65-1.el7.x86_64.rpm","mariadb-embedded-devel-5.5.65-1.el7.x86_64.rpm","mariadb-libs-5.5.65-1.el7.x86_64.rpm","mariadb-server-5.5.65-1.el7.x86_64.rpm","mariadb-test-5.5.65-1.el7.x86_64.rpm"],"source":"mariadb-5.5.65-1.el7.src.rpm"}]},{"product":"CGSL CORE 5.04","pkgs":[{"binary":["lftp-4.4.8-12.el7.cgslv5.0.2.gc0c267e.x86_64.rpm","lftp-debuginfo-4.4.8-12.el7.cgslv5.0.2.gc0c267e.x86_64.rpm","lftp-scripts-4.4.8-12.el7.cgslv5.0.2.gc0c267e.noarch.rpm"],"source":"lftp-4.4.8-12.el7.cgslv5.0.2.gc0c267e.src.rpm"},{"binary":["mariadb-5.5.65-1.el7.x86_64.rpm","mariadb-embedded-devel-5.5.65-1.el7.x86_64.rpm","mariadb-libs-5.5.65-1.el7.x86_64.rpm","mariadb-bench-5.5.65-1.el7.x86_64.rpm","mariadb-debuginfo-5.5.65-1.el7.x86_64.rpm","mariadb-devel-5.5.65-1.el7.x86_64.rpm","mariadb-embedded-5.5.65-1.el7.x86_64.rpm","mariadb-server-5.5.65-1.el7.x86_64.rpm","mariadb-test-5.5.65-1.el7.x86_64.rpm"],"source":"mariadb-5.5.65-1.el7.src.rpm"}]}]}

CVE

参考