Wednesday, July 31, 2024

[USN-6934-1] MySQL vulnerabilities

-----BEGIN PGP SIGNATURE-----
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=RZoD
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-6934-1
July 31, 2024

mysql-8.0 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
- mysql-8.0: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 8.0.39 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS,
and Ubuntu 24.04 LTS.

In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.

Please see the following for more information:

https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-38.html
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-39.html
https://www.oracle.com/security-alerts/cpujul2024.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
mysql-server-8.0 8.0.39-0ubuntu0.24.04.1

Ubuntu 22.04 LTS
mysql-server-8.0 8.0.39-0ubuntu0.22.04.1

Ubuntu 20.04 LTS
mysql-server-8.0 8.0.39-0ubuntu0.20.04.1

This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.

References:
https://ubuntu.com/security/notices/USN-6934-1
CVE-2024-20996, CVE-2024-21125, CVE-2024-21127, CVE-2024-21129,
CVE-2024-21130, CVE-2024-21134, CVE-2024-21142, CVE-2024-21162,
CVE-2024-21163, CVE-2024-21165, CVE-2024-21171, CVE-2024-21173,
CVE-2024-21177, CVE-2024-21179, CVE-2024-21185

Package Information:
https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.39-0ubuntu0.24.04.1
https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.39-0ubuntu0.22.04.1
https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.39-0ubuntu0.20.04.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)