This bug was fixed in the package mariadb - 1:10.11.13-0ubuntu0.24.04.1
---------------
mariadb (1:10.11.13-0ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: New upstream version 10.11.13 includes fixes for
regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/ and
also the previous upstream version 10.11.13 includes fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ and
also fixes the following security vulnerabilities (LP: #2110070):
- CVE-2023-52969
- CVE-2023-52970
- CVE-2023-52971
- CVE-2025-30693
- CVE-2025-30722
* Fix indentation for changelog entry in 1:10.11.11-0ubuntu0.24.04.1
* Drop all RocksDB patches now upstream due to update to version 6.29fb
* Drop all three patches previously backported to 1:10.11.11-0ubuntu0.24.04.2
now included in upstream release
* Update configuration traces to have --ssl-verify-server-cert from MDEV-28908
* Update configuration traces to include new upstream system variables:
- innodb-buffer-pool-size-auto-min (default: 0)
- innodb-buffer-pool-size-max (default: 0)
- innodb-log-checkpoint-now (default: FALSE)
* Also update configuration traces to match that in 10.11.12 the variables
innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised
as deprecated.
-- Otto Kekäläinen <[email protected]> Fri, 23 May 2025 16:20:51 -0700
** Changed in: mariadb (Ubuntu Noble)
Status: In Progress => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-52971
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2110070
Title:
CVE-2025-30722 et al affects MariaDB in Ubuntu
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mariadb/+bug/2110070/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
