{"affected":[{"ecosystem_specific":{"binaries":[{"mariadb-galera":"11.8.5-150700.3.9.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP7","name":"mariadb","purl":"pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.8.5-150700.3.9.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libmariadbd-devel":"11.8.5-150700.3.9.1","libmariadbd19":"11.8.5-150700.3.9.1","mariadb":"11.8.5-150700.3.9.1","mariadb-client":"11.8.5-150700.3.9.1","mariadb-errormessages":"11.8.5-150700.3.9.1","mariadb-tools":"11.8.5-150700.3.9.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP7","name":"mariadb","purl":"pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.8.5-150700.3.9.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for mariadb fixes the following issues:\n\n- CVE-2025-13699: Fixed MariaDB mariadb-dump utility vulnerable to\n  Path Traversal and Remote Code Execution (bsc#1254313)\n\nOther fixes:\n\n- Updated to 11.8.5\n    \n- Added %license tags to license files (bsc#1252162)\n    \n- Added INSTALL_DOCREADMEDIR cmake flag to install readme and license files\n","id":"SUSE-SU-2025:4438-1","modified":"2025-12-17T15:43:51Z","published":"2025-12-17T15:43:51Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-20254438-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252162"},{"type":"REPORT","url":"https://bugzilla.suse.com/1254313"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-13699"}],"related":["CVE-2025-13699"],"summary":"Security update for mariadb","upstream":["CVE-2025-13699"]}