Login
Login-Name Passwort


 
Newsletter
Werbung

Sicherheit: Mehrere Probleme in MySQL
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in MySQL
ID: USN-3357-1
Distribution: Ubuntu
Plattformen: Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 17.04
Datum: Do, 20. Juli 2017, 22:04
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3634
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3637
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3653
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3645
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3649
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3639
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3648
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3642
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3638
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3643
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3647
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3651
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3641
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-56.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3640
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3633
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3644
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3529
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3652
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-57.html

Originalnachricht

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============5283574599399670909==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="u3rmpe4Q3KD4GalUKqLShUTHdN9is7pDQ"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--u3rmpe4Q3KD4GalUKqLShUTHdN9is7pDQ
Content-Type: multipart/mixed;
boundary="b9UceisJvTa1Ckfv0pD39ScQ802Is8AXn";
protected-headers="v1"
From: Marc Deslauriers <marc.deslauriers@canonical.com>
Reply-To: Ubuntu Security <security@ubuntu.com>
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <b4916157-a025-2845-0fd7-8756ad9c6dbb@canonical.com>
Subject: [USN-3357-1] MySQL vulnerabilities

--b9UceisJvTa1Ckfv0pD39ScQ802Is8AXn
Content-Type: text/plain; charset=utf-8
Content-Language: en-C
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-3357-1
July 20, 2017

mysql-5.5, mysql-5.7 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 17.04
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
- mysql-5.7: MySQL database
- mysql-5.5: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.57 in Ubuntu 14.04 LTS. Ubuntu 16.04 LTS
and Ubuntu 17.04 have been updated to MySQL 5.7.19.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-56.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-57.html
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
mysql-server-5.7 5.7.19-0ubuntu0.17.04.1

Ubuntu 16.04 LTS:
mysql-server-5.7 5.7.19-0ubuntu0.16.04.1

Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.57-0ubuntu0.14.04.1

In general, a standard system update will make all the necessary changes.

References:
https://www.ubuntu.com/usn/usn-3357-1
CVE-2017-3529, CVE-2017-3633, CVE-2017-3634, CVE-2017-3635,
CVE-2017-3636, CVE-2017-3637, CVE-2017-3638, CVE-2017-3639,
CVE-2017-3640, CVE-2017-3641, CVE-2017-3642, CVE-2017-3643,
CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648,
CVE-2017-3649, CVE-2017-3650, CVE-2017-3651, CVE-2017-3652,
CVE-2017-3653

Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.19-0ubuntu0.17.04.1
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.19-0ubuntu0.16.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.57-0ubuntu0.14.04.1



--b9UceisJvTa1Ckfv0pD39ScQ802Is8AXn--

--u3rmpe4Q3KD4GalUKqLShUTHdN9is7pDQ
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQIcBAEBCgAGBQJZcOpAAAoJEGVp2FWnRL6TQP8QAKL+wFKZbjp/LmpyiLRaPRFQ
pBasZ6LXrw3QDJBzb/sUDMufay1uYRQjEEPaT+W+M3NGUHokng1Fb+R9fsiqc3SM
KDD5OEkQPJ/PItBS9mGl6Vk6B4pvVlpBIgsad/6M6DETX4XhNa74AkF0F7NJFynN
eCngl+SSXiA4xJYrn6UrnHc4S2cJJUzsY05A3d4UGHLb3l7rUig1bNw4bxsoh3H9
307V9S+jok3jKHvEIjAEcKJVRq3Q4ojHwOhyl1sHvLYBnKQWeL05n5n270XK/X4K
nKTdyTERmr9pHFL0FY8GE74Sxsu8CepcqCyAs+ARjDf9jll7QUzK6ntVyOfSjNwn
jfav5x8es4pzKPu/+bjhD8nXrXMNRJGX0NcB8JcwDwxn6ck5XH49M61DNUsCFVNH
xqJZRussBP9SvbGu+2uJxwx2ovrExZFKTUGQFMy3zzCaiF5SuhcPeSzmhx21cFBD
zLRPF4NWG6GFe7nSwIz3FXboLtZliQbZpSwagEfcNXFR4VJ7CVrI5JWIciri+9Q1
4MJEDsXFtJ3eVpsAbiAbrDrfmQVp3WmSgQlG2FUbGgK/cjLy8GJiIFEyGJdpQiv8
+6LIpqditfGHmLt0y1ZCE7ISstuevKrRSUDUAvyiUKBXQwE5wbWoBNZ7sxd3eGD/
Qa2cUDUG9eLSEogfhxbT
=0HMS
-----END PGP SIGNATURE-----

--u3rmpe4Q3KD4GalUKqLShUTHdN9is7pDQ--


--===============5283574599399670909==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============5283574599399670909==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung