Описание
ELSA-2020-3732: mysql:8.0 security update (IMPORTANT)
mysql [8.0.21-1]
- Rebase to 8.0.21
- Use bundled libzstd and libevent for RHSCL and RHEL-8.0.0
- Check that we have correct versions in bundled(*) Provides
- Remove re2 bundled dependency
[8.0.20-1]
- Rebase to 8.0.20
[8.0.19-2]
- Specify all perl dependencies
[8.0.19-1]
- Rebase to 8.0.19
[8.0.18-1]
- Rebase to 8.0.18
- Add libzstd-devel dependencies
- Include patch to build against protobuf 3.11
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module mysql:8.0 is enabled
mecab
0.996-1.module+el8.0.0+5253+1dce7bb2.9
mecab-ipadic
2.7.0.20070801-16.0.1.module+el8.0.0+5253+1dce7bb2
mecab-ipadic-EUCJP
2.7.0.20070801-16.0.1.module+el8.0.0+5253+1dce7bb2
mysql
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-common
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-devel
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-errmsg
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-libs
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-server
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-test
8.0.21-1.module+el8.2.0+7793+cfe2b687
Oracle Linux x86_64
Module mysql:8.0 is enabled
mecab
0.996-1.module+el8.0.0+5253+1dce7bb2.9
mecab-ipadic
2.7.0.20070801-16.0.1.module+el8.0.0+5253+1dce7bb2
mecab-ipadic-EUCJP
2.7.0.20070801-16.0.1.module+el8.0.0+5253+1dce7bb2
mysql
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-common
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-devel
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-errmsg
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-libs
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-server
8.0.21-1.module+el8.2.0+7793+cfe2b687
mysql-test
8.0.21-1.module+el8.2.0+7793+cfe2b687
Связанные CVE
Ссылки на источники
Связанные уязвимости
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Vulnerability in the MySQL Server product of Oracle MySQL (component: ...