Bugzilla – Bug 1072167
VUL-0: CVE-2017-15365: mariadb: Replication in sql/event_data_objects.cc occurs before ACL checks
Last modified: 2020-01-31 15:06:14 UTC
RH disected the MariaDB release notes:
MariaDB have noted in their release notes that reserved CVE-2017-15365 has been fixed in version 10.2.10, however they have not described how or what the vulnerability was. This CVE is also mentioned to affect Percona with the fix is described as:
"Added access checks for DDL commands to make sure they do not get replicated if they failed without proper permissions"
A comparison with the MariaDB 10.2.10 changelog and Percona description finds this commit, which seems a likely candidate for both describing and fixing the vulnerability.
The vulnerable code block in sql/event_data_objects.cc is also present in version 10.1, suggesting that it is also affected.
@MariaDB Engineering: Can you please confirm if other MariaDB series apart from 10.2 are or are not affected by CVE-2017-15365? Thank you in advance.
10.1 is affected too, will be fixed in 10.1.30
Note that it's mostly a theoretical issue that can be potentially exploited only in rather artificial conditions.
SUSE-SU-2019:1441-1: An update that solves 24 vulnerabilities and has two fixes is now available.
Category: security (important)
Bug References: 1013882,1064113,1064114,1072167,1101676,1101677,1101678,1103342,1112368,1112377,1112384,1112386,1112391,1112397,1112404,1112415,1112417,1112421,1112432,1112767,1116686,1118754,1120041,1122198,1122475,1127027
CVE References: CVE-2016-9843,CVE-2017-10320,CVE-2017-10365,CVE-2017-15365,CVE-2018-2759,CVE-2018-2777,CVE-2018-2786,CVE-2018-2810,CVE-2018-3058,CVE-2018-3060,CVE-2018-3063,CVE-2018-3064,CVE-2018-3066,CVE-2018-3143,CVE-2018-3156,CVE-2018-3162,CVE-2018-3173,CVE-2018-3174,CVE-2018-3185,CVE-2018-3200,CVE-2018-3251,CVE-2018-3277,CVE-2018-3282,CVE-2018-3284
SUSE OpenStack Cloud 7 (src): mariadb-10.2.22-10.1, mariadb-connector-c-3.0.7-1.6.1
NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.