1. Home
  2. Security Advisories
  3. AlmaLinux OS
  4. ALSA-2022:6590

[ALSA-2022:6590] mysql security, bug fix, and enhancement update

Severity Moderate
Affected Packages 8
CVEs 44
Info Packages References Vulnerabilities

mysql security, bug fix, and enhancement update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.

The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589)

Security Fix(es):

  • mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479)
  • mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413)
  • mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415)
  • mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423)
  • mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444)
  • mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427)
  • mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454)
  • mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455)
  • mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457)
  • mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460)
  • mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569)
  • mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515)
  • mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539)
  • mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534)
  • mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547)
  • mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Default logrotate set to wrong log file (BZ#2122592)
Package Affected Version
pkg:rpm/almalinux/mysql?arch=x86_64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql?arch=aarch64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-server?arch=x86_64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-server?arch=aarch64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-errmsg?arch=x86_64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-errmsg?arch=aarch64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-common?arch=x86_64&distro=almalinux-9.0 < 8.0.30-3.el9_0
pkg:rpm/almalinux/mysql-common?arch=aarch64&distro=almalinux-9.0 < 8.0.30-3.el9_0
ID
ALSA-2022:6590
Severity
moderate
URL
https://errata.almalinux.org/ALSA-2022:6590.html
Published
2022-09-20T00:00:00
(2 years ago)
Modified
2022-10-19T07:05:51
(23 months ago)
Rights
Copyright 2022 AlmaLinux OS
Other Advisories
Source # ID Name URL
RHSA RHSA-2022:6590 https://access.redhat.com/errata/RHSA-2022:6590
CVE CVE-2022-21412 https://access.redhat.com/security/cve/CVE-2022-21412
CVE CVE-2022-21413 https://access.redhat.com/security/cve/CVE-2022-21413
CVE CVE-2022-21414 https://access.redhat.com/security/cve/CVE-2022-21414
CVE CVE-2022-21415 https://access.redhat.com/security/cve/CVE-2022-21415
CVE CVE-2022-21417 https://access.redhat.com/security/cve/CVE-2022-21417
CVE CVE-2022-21418 https://access.redhat.com/security/cve/CVE-2022-21418
CVE CVE-2022-21423 https://access.redhat.com/security/cve/CVE-2022-21423
CVE CVE-2022-21425 https://access.redhat.com/security/cve/CVE-2022-21425
CVE CVE-2022-21427 https://access.redhat.com/security/cve/CVE-2022-21427
CVE CVE-2022-21435 https://access.redhat.com/security/cve/CVE-2022-21435
CVE CVE-2022-21436 https://access.redhat.com/security/cve/CVE-2022-21436
CVE CVE-2022-21437 https://access.redhat.com/security/cve/CVE-2022-21437
CVE CVE-2022-21438 https://access.redhat.com/security/cve/CVE-2022-21438
CVE CVE-2022-21440 https://access.redhat.com/security/cve/CVE-2022-21440
CVE CVE-2022-21444 https://access.redhat.com/security/cve/CVE-2022-21444
CVE CVE-2022-21451 https://access.redhat.com/security/cve/CVE-2022-21451
CVE CVE-2022-21452 https://access.redhat.com/security/cve/CVE-2022-21452
CVE CVE-2022-21454 https://access.redhat.com/security/cve/CVE-2022-21454
CVE CVE-2022-21455 https://access.redhat.com/security/cve/CVE-2022-21455
CVE CVE-2022-21457 https://access.redhat.com/security/cve/CVE-2022-21457
CVE CVE-2022-21459 https://access.redhat.com/security/cve/CVE-2022-21459
CVE CVE-2022-21460 https://access.redhat.com/security/cve/CVE-2022-21460
CVE CVE-2022-21462 https://access.redhat.com/security/cve/CVE-2022-21462
CVE CVE-2022-21478 https://access.redhat.com/security/cve/CVE-2022-21478
CVE CVE-2022-21479 https://access.redhat.com/security/cve/CVE-2022-21479
CVE CVE-2022-21509 https://access.redhat.com/security/cve/CVE-2022-21509
CVE CVE-2022-21515 https://access.redhat.com/security/cve/CVE-2022-21515
CVE CVE-2022-21517 https://access.redhat.com/security/cve/CVE-2022-21517
CVE CVE-2022-21522 https://access.redhat.com/security/cve/CVE-2022-21522
CVE CVE-2022-21525 https://access.redhat.com/security/cve/CVE-2022-21525
CVE CVE-2022-21526 https://access.redhat.com/security/cve/CVE-2022-21526
CVE CVE-2022-21527 https://access.redhat.com/security/cve/CVE-2022-21527
CVE CVE-2022-21528 https://access.redhat.com/security/cve/CVE-2022-21528
CVE CVE-2022-21529 https://access.redhat.com/security/cve/CVE-2022-21529
CVE CVE-2022-21530 https://access.redhat.com/security/cve/CVE-2022-21530
CVE CVE-2022-21531 https://access.redhat.com/security/cve/CVE-2022-21531
CVE CVE-2022-21534 https://access.redhat.com/security/cve/CVE-2022-21534
CVE CVE-2022-21537 https://access.redhat.com/security/cve/CVE-2022-21537
CVE CVE-2022-21538 https://access.redhat.com/security/cve/CVE-2022-21538
CVE CVE-2022-21539 https://access.redhat.com/security/cve/CVE-2022-21539
CVE CVE-2022-21547 https://access.redhat.com/security/cve/CVE-2022-21547
CVE CVE-2022-21553 https://access.redhat.com/security/cve/CVE-2022-21553
CVE CVE-2022-21556 https://access.redhat.com/security/cve/CVE-2022-21556
CVE CVE-2022-21569 https://access.redhat.com/security/cve/CVE-2022-21569
Bugzilla 2082636 https://bugzilla.redhat.com/2082636
Bugzilla 2082637 https://bugzilla.redhat.com/2082637
Bugzilla 2082638 https://bugzilla.redhat.com/2082638
Bugzilla 2082639 https://bugzilla.redhat.com/2082639
Bugzilla 2082640 https://bugzilla.redhat.com/2082640
Bugzilla 2082641 https://bugzilla.redhat.com/2082641
Bugzilla 2082642 https://bugzilla.redhat.com/2082642
Bugzilla 2082643 https://bugzilla.redhat.com/2082643
Bugzilla 2082644 https://bugzilla.redhat.com/2082644
Bugzilla 2082645 https://bugzilla.redhat.com/2082645
Bugzilla 2082646 https://bugzilla.redhat.com/2082646
Bugzilla 2082647 https://bugzilla.redhat.com/2082647
Bugzilla 2082648 https://bugzilla.redhat.com/2082648
Bugzilla 2082649 https://bugzilla.redhat.com/2082649
Bugzilla 2082650 https://bugzilla.redhat.com/2082650
Bugzilla 2082651 https://bugzilla.redhat.com/2082651
Bugzilla 2082652 https://bugzilla.redhat.com/2082652
Bugzilla 2082653 https://bugzilla.redhat.com/2082653
Bugzilla 2082654 https://bugzilla.redhat.com/2082654
Bugzilla 2082655 https://bugzilla.redhat.com/2082655
Bugzilla 2082656 https://bugzilla.redhat.com/2082656
Bugzilla 2082657 https://bugzilla.redhat.com/2082657
Bugzilla 2082658 https://bugzilla.redhat.com/2082658
Bugzilla 2082659 https://bugzilla.redhat.com/2082659
Bugzilla 2115282 https://bugzilla.redhat.com/2115282
Bugzilla 2115283 https://bugzilla.redhat.com/2115283
Bugzilla 2115284 https://bugzilla.redhat.com/2115284
Bugzilla 2115285 https://bugzilla.redhat.com/2115285
Bugzilla 2115286 https://bugzilla.redhat.com/2115286
Bugzilla 2115287 https://bugzilla.redhat.com/2115287
Bugzilla 2115288 https://bugzilla.redhat.com/2115288
Bugzilla 2115289 https://bugzilla.redhat.com/2115289
Bugzilla 2115290 https://bugzilla.redhat.com/2115290
Bugzilla 2115291 https://bugzilla.redhat.com/2115291
Bugzilla 2115292 https://bugzilla.redhat.com/2115292
Bugzilla 2115293 https://bugzilla.redhat.com/2115293
Bugzilla 2115294 https://bugzilla.redhat.com/2115294
Bugzilla 2115295 https://bugzilla.redhat.com/2115295
Bugzilla 2115296 https://bugzilla.redhat.com/2115296
Bugzilla 2115297 https://bugzilla.redhat.com/2115297
Bugzilla 2115298 https://bugzilla.redhat.com/2115298
Bugzilla 2115299 https://bugzilla.redhat.com/2115299
Bugzilla 2115300 https://bugzilla.redhat.com/2115300
Bugzilla 2115301 https://bugzilla.redhat.com/2115301
Self ALSA-2022:6590 https://errata.almalinux.org/9/ALSA-2022-6590.html
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/almalinux/mysql?arch=x86_64&distro=almalinux-9.0 almalinux mysql < 8.0.30-3.el9_0 almalinux-9.0 x86_64
Affected pkg:rpm/almalinux/mysql?arch=aarch64&distro=almalinux-9.0 almalinux mysql < 8.0.30-3.el9_0 almalinux-9.0 aarch64
Affected pkg:rpm/almalinux/mysql-server?arch=x86_64&distro=almalinux-9.0 almalinux mysql-server < 8.0.30-3.el9_0 almalinux-9.0 x86_64
Affected pkg:rpm/almalinux/mysql-server?arch=aarch64&distro=almalinux-9.0 almalinux mysql-server < 8.0.30-3.el9_0 almalinux-9.0 aarch64
Affected pkg:rpm/almalinux/mysql-errmsg?arch=x86_64&distro=almalinux-9.0 almalinux mysql-errmsg < 8.0.30-3.el9_0 almalinux-9.0 x86_64
Affected pkg:rpm/almalinux/mysql-errmsg?arch=aarch64&distro=almalinux-9.0 almalinux mysql-errmsg < 8.0.30-3.el9_0 almalinux-9.0 aarch64
Affected pkg:rpm/almalinux/mysql-common?arch=x86_64&distro=almalinux-9.0 almalinux mysql-common < 8.0.30-3.el9_0 almalinux-9.0 x86_64
Affected pkg:rpm/almalinux/mysql-common?arch=aarch64&distro=almalinux-9.0 almalinux mysql-common < 8.0.30-3.el9_0 almalinux-9.0 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date