[USN-6839-1] MariaDB vulnerability

[Eduardo Barretto]

==========================================================================
Ubuntu Security Notice USN-6839-1
June 19, 2024

mariadb, mariadb-10.6 vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 23.10
- Ubuntu 22.04 LTS

Summary:

A security issue was fixed in MariaDB

Software Description:
- mariadb: MariaDB database
- mariadb-10.6: MariaDB database

Details:

A security issue was discovered in MariaDB and this update includes
new upstream MariaDB versions to fix the issue.

MariaDB has been updated to 10.6.18 in Ubuntu 22.04 LTS and to 10.11.8 in
Ubuntu 23.10 and Ubuntu 24.04 LTS.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
  mariadb-server                  1:10.11.8-0ubuntu0.24.04.1

Ubuntu 23.10
  mariadb-server                  1:10.11.8-0ubuntu0.23.10.1

Ubuntu 22.04 LTS
  mariadb-server                  1:10.6.18-0ubuntu0.22.04.1

This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart MariaDB to
make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-6839-1
  CVE-2024-21096

Package Information:
  https://launchpad.net/ubuntu/+source/mariadb/1:10.11.8-0ubuntu0.24.04.1
  https://launchpad.net/ubuntu/+source/mariadb/1:10.11.8-0ubuntu0.23.10.1
  https://launchpad.net/ubuntu/+source/mariadb-10.6/1:10.6.18-0ubuntu0.22.04.1
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-security-announce/attachments/20240619/0a1bbc74/attachment.sig>