Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 245 results


CVE-2024-27766

Medium priority
Needs evaluation

An issue in MariaDB v.11.1 allows a remote attacker to execute arbitrary code via the lib_mysqludf_sys.so function. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed.

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages

CVE-2023-39593

Medium priority
Needs evaluation

Insecure permissions in the sys_exec function of MariaDB v10.5 allows authenticated attackers to execute arbitrary commands with elevated privileges. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages

CVE-2024-21247

Medium priority
Ignored

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Not affected Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Not affected
mariadb-10.1 Not in release Not in release Not in release Not affected
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Not affected Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Not affected
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Not affected
Show all 10 packages Show less packages

CVE-2024-21244

Medium priority
Ignored

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Telemetry). Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Not affected Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Not affected
mariadb-10.1 Not in release Not in release Not in release Not affected
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Not affected Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Not affected
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Not affected
Show all 10 packages Show less packages

CVE-2024-21243

Medium priority
Ignored

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Telemetry). Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Not affected Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Not affected
mariadb-10.1 Not in release Not in release Not in release Not affected
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Not affected Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Not affected
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Not affected
Show all 10 packages Show less packages

CVE-2024-21241

Medium priority

Some fixes available 4 of 14

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Needs evaluation Ignored
mysql-8.0 Fixed Fixed Fixed
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages

CVE-2024-21239

Medium priority

Some fixes available 4 of 14

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Needs evaluation Ignored
mysql-8.0 Fixed Fixed Fixed
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages

CVE-2024-21238

Medium priority
Ignored

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and 9.0.1 and prior. Difficult to exploit vulnerability...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Not affected Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Not affected
mariadb-10.1 Not in release Not in release Not in release Not affected
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Not affected Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Not affected Ignored
mysql-8.0 Not affected Not affected Not affected
percona-server-5.6 Not in release Not in release Not in release Not affected
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Not affected
Show all 10 packages Show less packages

CVE-2024-21237

Medium priority

Some fixes available 4 of 14

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Needs evaluation Ignored
mysql-8.0 Fixed Fixed Fixed
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages

CVE-2024-21236

Medium priority

Some fixes available 4 of 14

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high...

10 affected packages

mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mariadb Needs evaluation Not in release Not in release
mariadb-10.0 Not in release Not in release Not in release Needs evaluation
mariadb-10.1 Not in release Not in release Not in release Needs evaluation
mariadb-10.3 Not in release Not in release Ignored
mariadb-10.6 Not in release Needs evaluation Not in release
mysql-5.5 Not in release Not in release Not in release
mysql-5.7 Not in release Not in release Not in release Needs evaluation Ignored
mysql-8.0 Fixed Fixed Fixed
percona-server-5.6 Not in release Not in release Not in release Needs evaluation
percona-xtradb-cluster-5.6 Not in release Not in release Not in release Needs evaluation
Show all 10 packages Show less packages