-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/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=92Uy
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1621-1
November 05, 2012
mysql-5.1, mysql-5.5, mysql-dfsg-5.1 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 11.10
- Ubuntu 10.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
- mysql-5.5: MySQL database
- mysql-5.1: MySQL database
- mysql-dfsg-5.1: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 5.1.66 in Ubuntu 10.04 LTS and Ubuntu 11.10.
Ubuntu 12.04 LTS and Ubuntu 12.10 have been updated to MySQL 5.5.28.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-x.html
http://dev.mysql.com/doc/refman/5.5/en/news-5-5-x.html
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.10:
mysql-server-5.5 5.5.28-0ubuntu0.12.10.1
Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.28-0ubuntu0.12.04.2
Ubuntu 11.10:
mysql-server-5.1 5.1.66-0ubuntu0.11.10.2
Ubuntu 10.04 LTS:
mysql-server-5.1 5.1.66-0ubuntu0.10.04.1
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-1621-1
CVE-2012-3144, CVE-2012-3147, CVE-2012-3149, CVE-2012-3150,
CVE-2012-3156, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163,
CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177,
CVE-2012-3180, CVE-2012-3197, https://launchpad.net/bugs/1068158
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.28-0ubuntu0.12.10.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.28-0ubuntu0.12.04.2
https://launchpad.net/ubuntu/+source/mysql-5.1/5.1.66-0ubuntu0.11.10.2
https://launchpad.net/ubuntu/+source/mysql-dfsg-5.1/5.1.66-0ubuntu0.10.04.1
No comments:
Post a Comment