You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa mysql-5.5 i mysql-5.7

Sigurnosni nedostaci programskog paketa mysql-5.5 i mysql-5.7

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3725-1
July 30, 2018

mysql-5.5, mysql-5.7 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
– mysql-5.7: MySQL database
– mysql-5.5: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.61 in Ubuntu 14.04 LTS. Ubuntu 16.04 LTS and
Ubuntu 18.04 LTS have been updated to MySQL 5.7.23.

In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.

Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-61.html
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-23.html
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
mysql-server-5.7 5.7.23-0ubuntu0.18.04.1

Ubuntu 16.04 LTS:
mysql-server-5.7 5.7.23-0ubuntu0.16.04.1

Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.61-0ubuntu0.14.04.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/usn/usn-3725-1
CVE-2018-2767, CVE-2018-3054, CVE-2018-3056, CVE-2018-3058,
CVE-2018-3060, CVE-2018-3061, CVE-2018-3062, CVE-2018-3063,
CVE-2018-3064, CVE-2018-3065, CVE-2018-3066, CVE-2018-3070,
CVE-2018-3071, CVE-2018-3077, CVE-2018-3081

Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.23-0ubuntu0.18.04.1
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.23-0ubuntu0.16.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.61-0ubuntu0.14.04.1

—–BEGIN PGP SIGNATURE—–
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=uRDX
—–END PGP SIGNATURE—–

AutorZvonimir Bosnjak
Cert idNCERT-REF-2018-07-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa wireshark

Otkriveni su sigurnosni nedostaci u programskom paketu wireshark za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim udaljenim napadačima omogućuju izvođenje napada...

Close