You are here
Home > Preporuke > Sigurnosni nedostaci programskih paketa mysql-5.5 i mysql-5.6

Sigurnosni nedostaci programskih paketa mysql-5.5 i mysql-5.6

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-2674-1
July 21, 2015

mysql-5.5, mysql-5.6 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 15.04
– Ubuntu 14.10
– Ubuntu 14.04 LTS
– Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
– mysql-5.6: MySQL database development files
– mysql-5.5: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.44 in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and
Ubuntu 14.10. Ubuntu 15.04 has been updated to MySQL 5.6.25.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.04:
mysql-server-5.6 5.6.25-0ubuntu0.15.04.1

Ubuntu 14.10:
mysql-server-5.5 5.5.44-0ubuntu0.14.10.1

Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.44-0ubuntu0.14.04.1

Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.44-0ubuntu0.12.04.1

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2674-1
CVE-2015-2582, CVE-2015-2611, CVE-2015-2617, CVE-2015-2620,
CVE-2015-2639, CVE-2015-2641, CVE-2015-2643, CVE-2015-2648,
CVE-2015-2661, CVE-2015-4737, CVE-2015-4752, CVE-2015-4757,
CVE-2015-4761, CVE-2015-4767, CVE-2015-4769, CVE-2015-4771,
CVE-2015-4772

Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.6/5.6.25-0ubuntu0.15.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.14.10.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.12.04.1

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=gh6T
—–END PGP SIGNATURE—–

AutorMarijo Plepelic
Cert idNCERT-REF-2015-07-0025-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Ranjivost programskog paketa pacemaker

Otkrivena je ranjivost u programskom paketu pacemaker za RHEL 6 uzrokovana načinom kojim je u određenim situacijama procjenjivao dodane čvorove....

Close