Correct mariadb CVEs affected version
Correct npm mariadb package CVE affected version.
"mariadb" package name was previously used for malicious use and blocked by npm. Package name was reserved by npm to avoid any malicious use.
Then mariadb organization took package for real mariadb driver use.