Security update for mariadb SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:4438-1 Final 1 1 2025-12-17T15:43:51Z current 2025-12-17T15:43:51Z 2025-12-17T15:43:51Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mariadb This update for mariadb fixes the following issues: - CVE-2025-13699: Fixed MariaDB mariadb-dump utility vulnerable to Path Traversal and Remote Code Execution (bsc#1254313) Other fixes: - Updated to 11.8.5 - Added %license tags to license files (bsc#1252162) - Added INSTALL_DOCREADMEDIR cmake flag to install readme and license files The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/mariadb-client:latest-2025-4438,Container suse/mariadb:latest-2025-4438,SUSE-2025-4438,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4438,SUSE-SLE-Module-Server-Applications-15-SP7-2025-4438,SUSE-SLE-Product-SLES-15-SP7-ERICSSON-2025-4438 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20254438-1/ Link for SUSE-SU-2025:4438-1 https://lists.suse.com/pipermail/sle-security-updates/2025-December/023577.html E-Mail link for SUSE-SU-2025:4438-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1252162 SUSE Bug 1252162 https://bugzilla.suse.com/1254313 SUSE Bug 1254313 https://www.suse.com/security/cve/CVE-2025-13699/ SUSE CVE CVE-2025-13699 page Container suse/mariadb-client:latest Container suse/mariadb:latest SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Module for Server Applications 15 SP7 mariadb-client-11.8.5-150700.3.9.1 mariadb-errormessages-11.8.5-150700.3.9.1 mariadb-11.8.5-150700.3.9.1 mariadb-tools-11.8.5-150700.3.9.1 libmariadbd-devel-11.8.5-150700.3.9.1 libmariadbd19-11.8.5-150700.3.9.1 mariadb-bench-11.8.5-150700.3.9.1 mariadb-galera-11.8.5-150700.3.9.1 mariadb-rpm-macros-11.8.5-150700.3.9.1 mariadb-test-11.8.5-150700.3.9.1 mariadb-client-11.8.5-150700.3.9.1 as a component of Container suse/mariadb-client:latest mariadb-errormessages-11.8.5-150700.3.9.1 as a component of Container suse/mariadb-client:latest mariadb-11.8.5-150700.3.9.1 as a component of Container suse/mariadb:latest mariadb-client-11.8.5-150700.3.9.1 as a component of Container suse/mariadb:latest mariadb-errormessages-11.8.5-150700.3.9.1 as a component of Container suse/mariadb:latest mariadb-tools-11.8.5-150700.3.9.1 as a component of Container suse/mariadb:latest mariadb-galera-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libmariadbd-devel-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 libmariadbd19-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 mariadb-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 mariadb-client-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 mariadb-errormessages-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 mariadb-tools-11.8.5-150700.3.9.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 unknown CVE-2025-13699 Container suse/mariadb-client:latest:mariadb-client-11.8.5-150700.3.9.1 Container suse/mariadb-client:latest:mariadb-errormessages-11.8.5-150700.3.9.1 Container suse/mariadb:latest:mariadb-11.8.5-150700.3.9.1 Container suse/mariadb:latest:mariadb-client-11.8.5-150700.3.9.1 Container suse/mariadb:latest:mariadb-errormessages-11.8.5-150700.3.9.1 Container suse/mariadb:latest:mariadb-tools-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:mariadb-galera-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:libmariadbd-devel-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:libmariadbd19-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:mariadb-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:mariadb-client-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:mariadb-errormessages-11.8.5-150700.3.9.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:mariadb-tools-11.8.5-150700.3.9.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254438-1/ https://www.suse.com/security/cve/CVE-2025-13699.html CVE-2025-13699 https://bugzilla.suse.com/1254313 SUSE Bug 1254313