| VID |
25382 |
| Severity |
30 |
| Port |
3306 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The version of MariaDB installed on the remote host is prior to 10.3.36. It is, therefore, affected by a vulnerability as referenced in the mariadb-10336-release-notes advisory.
- zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. (CVE-2018-25032)
* References:
https://mariadb.com/kb/en/mdb-10336-rn
* Platforms Affected:
MariaDB versions 10.3.x prior to 10.3.36
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of MariaDB (10.3.36 or later), available from the MariaDB Web site at https://downloads.mariadb.org/ |
| Related URL |
CVE-2018-25032,CVE-2022-32084,CVE-2022-32091 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
