You are here
Home > Preporuke > Ranjivosti programskog paketa community-mysql

Ranjivosti programskog paketa community-mysql

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2017-95327e44ec
2017-11-06 22:27:20.068338
——————————————————————————–

Name : community-mysql
Product : Fedora 25
Version : 5.7.20
Release : 1.fc25
URL : http://www.mysql.com
Summary : MySQL client programs and shared libraries
Description :
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MySQL client programs and generic MySQL files.

——————————————————————————–
Update Information:

A quarter year regular dose of fixed CVE’s.
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html .
rhbz#1497694: Fix owner and perms on log file in post script CVE fixes:
rhbz#1503701 CVE-2017-10155 CVE-2017-10227 CVE-2017-10268 CVE-2017-10276
CVE-2017-10279 CVE-2017-10283 CVE-2017-10286 CVE-2017-10294 CVE-2017-10314
CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 Others: Move all test
binaries to -test package Dont ship unneeded man pages on systemd platforms
Remove mysql_config_editor from -devel package, shipped in client
——————————————————————————–
References:

[ 1 ] Bug #1503701 – CVE-2017-10155 CVE-2017-10227 CVE-2017-10268 CVE-2017-10276 CVE-2017-10279 CVE-2017-10283 CVE-2017-10286 CVE-2017-10294 CVE-2017-10314 CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 community-mysql: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1503701
[ 2 ] Bug #1497694 – mysqld service not working by default after bd72127
https://bugzilla.redhat.com/show_bug.cgi?id=1497694
[ 3 ] Bug #1503357 – community-mysql-5.7.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1503357
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade community-mysql’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2017-50c790aaed
2017-11-06 22:27:40.449980
——————————————————————————–

Name : community-mysql
Product : Fedora 26
Version : 5.7.20
Release : 1.fc26
URL : http://www.mysql.com
Summary : MySQL client programs and shared libraries
Description :
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MySQL client programs and generic MySQL files.

——————————————————————————–
Update Information:

A quarter year regular dose of fixed CVE’s.
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html .
rhbz#1497694: Fix owner and perms on log file in post script CVE fixes:
rhbz#1503701 CVE-2017-10155 CVE-2017-10227 CVE-2017-10268 CVE-2017-10276
CVE-2017-10279 CVE-2017-10283 CVE-2017-10286 CVE-2017-10294 CVE-2017-10314
CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 Others: Move all test
binaries to -test package Dont ship unneeded man pages on systemd platforms
Remove mysql_config_editor from -devel package, shipped in client
——————————————————————————–
References:

[ 1 ] Bug #1503701 – CVE-2017-10155 CVE-2017-10227 CVE-2017-10268 CVE-2017-10276 CVE-2017-10279 CVE-2017-10283 CVE-2017-10286 CVE-2017-10294 CVE-2017-10314 CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 community-mysql: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1503701
[ 2 ] Bug #1497694 – mysqld service not working by default after bd72127
https://bugzilla.redhat.com/show_bug.cgi?id=1497694
[ 3 ] Bug #1503357 – community-mysql-5.7.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1503357
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade community-mysql’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

AutorTomislav Protega
Cert idNCERT-REF-2017-11-0053-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa modulemd

Otkriven je sigurnosni nedostatak u programskom paketu modulemd za Fedoru. Otkriveni nedostatak potencijalnim napadačima omogućuje izvršavanje proizvoljnog programskog koda prilikom...

Close