Candidate: CVE-2020-7221
PublicDate: 2020-02-04 17:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7221
 https://bugzilla.suse.com/show_bug.cgi?id=1160868
 https://github.com/MariaDB/server/commit/9d18b6246755472c8324bf3e20e234e08ac45618
 https://seclists.org/oss-sec/2020/q1/55
Description:
 mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege
 escalation from the mysql user account to root because chown and chmod are
 performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of
 auth_pam_tool_dir/auth_pam_tool. NOTE: this does not affect the Oracle
 MySQL product, which implements mysql_install_db differently.
Ubuntu-Description:
Notes:
 leosilva> since 5.5 is no longer upstream supported and so far we cannot
  patch it, marking it as ignored.
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_mysql-5.5:
upstream_mysql-5.5: needs-triage
precise/esm_mysql-5.5: ignored
trusty_mysql-5.5: ignored (out of standard support)
trusty/esm_mysql-5.5: ignored
vivid_mysql-5.5: DNE
xenial_mysql-5.5: DNE
bionic_mysql-5.5: DNE
eoan_mysql-5.5: DNE
focal_mysql-5.5: DNE
groovy_mysql-5.5: DNE
hirsute_mysql-5.5: DNE
impish_mysql-5.5: DNE
jammy_mysql-5.5: DNE
devel_mysql-5.5: DNE

Patches_mysql-5.6:
upstream_mysql-5.6: needs-triage
precise/esm_mysql-5.6: DNE
trusty_mysql-5.6: ignored (out of standard support)
trusty/esm_mysql-5.6: DNE
xenial_mysql-5.6: DNE
bionic_mysql-5.6: DNE
eoan_mysql-5.6: DNE
focal_mysql-5.6: DNE
groovy_mysql-5.6: DNE
hirsute_mysql-5.6: DNE
impish_mysql-5.6: DNE
jammy_mysql-5.6: DNE
devel_mysql-5.6: DNE

Patches_mysql-5.7:
upstream_mysql-5.7: needs-triage
precise/esm_mysql-5.7: DNE
trusty_mysql-5.7: DNE
trusty/esm_mysql-5.7: DNE
xenial_mysql-5.7: not-affected
esm-infra/xenial_mysql-5.7: not-affected
bionic_mysql-5.7: not-affected
eoan_mysql-5.7: DNE
focal_mysql-5.7: DNE
groovy_mysql-5.7: DNE
hirsute_mysql-5.7: DNE
impish_mysql-5.7: DNE
jammy_mysql-5.7: DNE
devel_mysql-5.7: DNE

Patches_mysql-8.0:
upstream_mysql-8.0: needs-triage
precise/esm_mysql-8.0: DNE
trusty_mysql-8.0: DNE
trusty/esm_mysql-8.0: DNE
xenial_mysql-8.0: DNE
bionic_mysql-8.0: DNE
eoan_mysql-8.0: not-affected
focal_mysql-8.0: not-affected
groovy_mysql-8.0: not-affected
hirsute_mysql-8.0: not-affected
impish_mysql-8.0: not-affected
jammy_mysql-8.0: not-affected
devel_mysql-8.0: not-affected

Patches_mariadb-5.5:
upstream_mariadb-5.5: needs-triage
precise/esm_mariadb-5.5: DNE
trusty_mariadb-5.5: ignored (out of standard support)
trusty/esm_mariadb-5.5: DNE
xenial_mariadb-5.5: DNE
bionic_mariadb-5.5: DNE
eoan_mariadb-5.5: DNE
focal_mariadb-5.5: DNE
groovy_mariadb-5.5: DNE
hirsute_mariadb-5.5: DNE
impish_mariadb-5.5: DNE
jammy_mariadb-5.5: DNE
devel_mariadb-5.5: DNE

Patches_mariadb-10.0:
upstream_mariadb-10.0: needs-triage
precise/esm_mariadb-10.0: DNE
trusty_mariadb-10.0: DNE
trusty/esm_mariadb-10.0: DNE
xenial_mariadb-10.0: ignored (end of standard support, was needs-triage)
bionic_mariadb-10.0: DNE
eoan_mariadb-10.0: DNE
focal_mariadb-10.0: DNE
groovy_mariadb-10.0: DNE
hirsute_mariadb-10.0: DNE
impish_mariadb-10.0: DNE
jammy_mariadb-10.0: DNE
devel_mariadb-10.0: DNE

Patches_mariadb-10.1:
upstream_mariadb-10.1: needs-triage
precise/esm_mariadb-10.1: DNE
trusty_mariadb-10.1: DNE
trusty/esm_mariadb-10.1: DNE
xenial_mariadb-10.1: DNE
bionic_mariadb-10.1: not-affected
eoan_mariadb-10.1: DNE
focal_mariadb-10.1: DNE
groovy_mariadb-10.1: DNE
hirsute_mariadb-10.1: DNE
impish_mariadb-10.1: DNE
jammy_mariadb-10.1: DNE
devel_mariadb-10.1: DNE

Patches_mariadb-10.3:
upstream_mariadb-10.3: needs-triage
precise/esm_mariadb-10.3: DNE
trusty_mariadb-10.3: DNE
trusty/esm_mariadb-10.3: DNE
xenial_mariadb-10.3: DNE
bionic_mariadb-10.3: DNE
eoan_mariadb-10.3: not-affected
focal_mariadb-10.3: not-affected
groovy_mariadb-10.3: not-affected
hirsute_mariadb-10.3: DNE
impish_mariadb-10.3: DNE
jammy_mariadb-10.3: DNE
devel_mariadb-10.3: DNE

Patches_percona-xtradb-cluster-5.5:
upstream_percona-xtradb-cluster-5.5: needs-triage
precise/esm_percona-xtradb-cluster-5.5: DNE
trusty_percona-xtradb-cluster-5.5: ignored (out of standard support)
trusty/esm_percona-xtradb-cluster-5.5: DNE
xenial_percona-xtradb-cluster-5.5: DNE
bionic_percona-xtradb-cluster-5.5: DNE
eoan_percona-xtradb-cluster-5.5: DNE
focal_percona-xtradb-cluster-5.5: DNE
groovy_percona-xtradb-cluster-5.5: DNE
hirsute_percona-xtradb-cluster-5.5: DNE
impish_percona-xtradb-cluster-5.5: DNE
jammy_percona-xtradb-cluster-5.5: DNE
devel_percona-xtradb-cluster-5.5: DNE

Patches_percona-xtradb-cluster-5.6:
upstream_percona-xtradb-cluster-5.6: needs-triage
precise/esm_percona-xtradb-cluster-5.6: DNE
trusty_percona-xtradb-cluster-5.6: DNE
trusty/esm_percona-xtradb-cluster-5.6: DNE
xenial_percona-xtradb-cluster-5.6: not-affected
bionic_percona-xtradb-cluster-5.6: DNE
eoan_percona-xtradb-cluster-5.6: DNE
focal_percona-xtradb-cluster-5.6: DNE
groovy_percona-xtradb-cluster-5.6: DNE
hirsute_percona-xtradb-cluster-5.6: DNE
impish_percona-xtradb-cluster-5.6: DNE
jammy_percona-xtradb-cluster-5.6: DNE
devel_percona-xtradb-cluster-5.6: DNE

Patches_percona-server-5.6:
upstream_percona-server-5.6: needs-triage
precise/esm_percona-server-5.6: DNE
trusty_percona-server-5.6: DNE
trusty/esm_percona-server-5.6: DNE
xenial_percona-server-5.6: not-affected
bionic_percona-server-5.6: DNE
eoan_percona-server-5.6: DNE
focal_percona-server-5.6: DNE
groovy_percona-server-5.6: DNE
hirsute_percona-server-5.6: DNE
impish_percona-server-5.6: DNE
jammy_percona-server-5.6: DNE
devel_percona-server-5.6: DNE