This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============6124064095867711774==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="TC4towiOAhOk9sVFexvrQXhBqTFpRQkMI"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--TC4towiOAhOk9sVFexvrQXhBqTFpRQkMI
Content-Type: text/plain; charset=utf-
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-2674-1
July 21, 2015
mysql-5.5, mysql-5.6 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 15.04
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
- mysql-5.6: MySQL database development files
- mysql-5.5: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 5.5.44 in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and
Ubuntu 14.10. Ubuntu 15.04 has been updated to MySQL 5.6.25.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 15.04:
mysql-server-5.6 5.6.25-0ubuntu0.15.04.1
Ubuntu 14.10:
mysql-server-5.5 5.5.44-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.44-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.44-0ubuntu0.12.04.1
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2674-1
CVE-2015-2582, CVE-2015-2611, CVE-2015-2617, CVE-2015-2620,
CVE-2015-2639, CVE-2015-2641, CVE-2015-2643, CVE-2015-2648,
CVE-2015-2661, CVE-2015-4737, CVE-2015-4752, CVE-2015-4757,
CVE-2015-4761, CVE-2015-4767, CVE-2015-4769, CVE-2015-4771,
CVE-2015-4772
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.6/5.6.25-0ubuntu0.15.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.14.10.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.44-0ubuntu0.12.04.1
--TC4towiOAhOk9sVFexvrQXhBqTFpRQkMI
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBCgAGBQJVro2bAAoJEGVp2FWnRL6TWo4P/Arwuyw+RO6Hh9VgLBe/ZjJy
E5aZjyTlPgz9Wbcu+znhkZhC2TTH7/a0llmwWDX+D9DFCzK8QE2mu683BDURd58E
bhehQEhW0YpQkMSO5rUb37YV7fWMaqbl1Kg3d8x+pk65RQwh52tuGaZY8GkCzK2C
zDs//IUUojneQ3X714hxGG9aLeLxp0sBWvvJ/wIHKvh7APEY2wUdQkGeijO8IEw5
0+3lUHs2wrsPFtgeFlzNtMrSr8DTrvR7J2T2jVP8yOH/biPisb9kFqVA/GV4HmbU
NiYBdvV467tdj2N61D/nYsyokBLrOz0PqwHN+TOqbR52VncrbitnUgCguTTJZc3B
sqdve94bavsDkV5Kq+tg2AmEct4fbvKPCeAPcmGKXCNP3J/ejqoiz/RKlMNCkI1D
OpMWpWooTFss2nR4vUZLU0veNJZvUJk5E5Y1JaFofXVe4cpzcIgx1Z4vK755GGe2
QJNUNFGHq/DYrD7TdqRFjkTHycn4+OagHDmY9g+zVA+g2m3/KiEWtCdUqSWaHfB/
xesSYEQKxHt2O1BKH/WuaQsp4i4RkfoD/1X35HgnAY0SUJourfHN+T8h5TC2Bw2j
KKj4ozeO5Pys6hwjWT6KHPbNIZMey/sJFoBtxSGmDdudQfafLD0t0i3B5IIeAhjp
ZM60ERM2enIw1nhH8Dw9
=gh6T
-----END PGP SIGNATURE-----
--TC4towiOAhOk9sVFexvrQXhBqTFpRQkMI--
--===============6124064095867711774==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============6124064095867711774==--
|
