Login
Newsletter
Werbung
Sicherheit: Mehrere Probleme in MySQL
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in MySQL
ID: USN-4441-1
Distribution: Ubuntu
Plattformen: Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS
Datum: Di, 28. Juli 2020, 23:24
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14702
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14547
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14651
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14634
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14586
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14678
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14576
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14553
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14654
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14539
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14624
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14559
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-31.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14620
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-21.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14575
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14631
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14680
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14591
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14623
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14633
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14632
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14656
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14597
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14568
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14619
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14663
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14641
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14643
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14697
https://www.oracle.com/security-alerts/cpujul2020.html
Applikationen: MySQL

Originalnachricht

 
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============1414077178117531049==
Content-Type: multipart/signed; micalg=pgp-sha512;
 protocol="application/pgp-signature";
 boundary="miXirGE6haiI6TadX16MGFj9gOBBKiNI7"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--miXirGE6haiI6TadX16MGFj9gOBBKiNI7
Content-Type: multipart/mixed;
 boundary="q0rPo6ivOq8a3IOH7ssvPsIpm2ZGqOUiv"

--q0rPo6ivOq8a3IOH7ssvPsIpm2ZGqOUiv
Content-Type: text/plain; charset=utf-8
Content-Language: en-C
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-4441-1
July 28, 2020

mysql-5.7, mysql-8.0 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
- mysql-8.0: MySQL database
- mysql-5.7: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 8.0.21 in Ubuntu 20.04 LTS. Ubuntu 16.04 LTS and
Ubuntu 18.04 LTS have been updated to MySQL 5.7.31.

In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.

Please see the following for more information:

https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-31.html

https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-21.html

https://www.oracle.com/security-alerts/cpujul2020.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS:
  mysql-server-8.0                8.0.21-0ubuntu0.20.04.3

Ubuntu 18.04 LTS:
  mysql-server-5.7                5.7.31-0ubuntu0.18.04.1

Ubuntu 16.04 LTS:
  mysql-server-5.7                5.7.31-0ubuntu0.16.04.1

This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.

References:
  https://usn.ubuntu.com/4441-1
  CVE-2020-14539, CVE-2020-14540, CVE-2020-14547, CVE-2020-14550,
  CVE-2020-14553, CVE-2020-14559, CVE-2020-14568, CVE-2020-14575,
  CVE-2020-14576, CVE-2020-14586, CVE-2020-14591, CVE-2020-14597,
  CVE-2020-14619, CVE-2020-14620, CVE-2020-14623, CVE-2020-14624,
  CVE-2020-14631, CVE-2020-14632, CVE-2020-14633, CVE-2020-14634,
  CVE-2020-14641, CVE-2020-14643, CVE-2020-14651, CVE-2020-14654,
  CVE-2020-14656, CVE-2020-14663, CVE-2020-14678, CVE-2020-14680,
  CVE-2020-14697, CVE-2020-14702

Package Information:
  https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.21-0ubuntu0.20.04.3
  https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.31-0ubuntu0.18.04.1
  https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.31-0ubuntu0.16.04.1


--q0rPo6ivOq8a3IOH7ssvPsIpm2ZGqOUiv--

--miXirGE6haiI6TadX16MGFj9gOBBKiNI7
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=TJGv
-----END PGP SIGNATURE-----

--miXirGE6haiI6TadX16MGFj9gOBBKiNI7--


--===============1414077178117531049==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5
LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl
IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj
dXJpdHktYW5ub3VuY2UK

--===============1414077178117531049==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung