[ALSA-2023:2621] mysql security update
Severity
Important
Affected Packages
8
CVEs
37
mysql security update
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.
The following packages have been upgraded to a later upstream version: mysql (8.0.32). (BZ#2177731, BZ#2177732)
Security Fix(es):
- mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2023) (CVE-2023-21912)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-21594)
- mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2022) (CVE-2022-21599)
- mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21604)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-21608)
- mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21611)
- mysql: Server: Connection Handling unspecified vulnerability (CPU Oct 2022) (CVE-2022-21617)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-21625)
- mysql: Server: Security: Privileges unspecified vulnerability (CPU Oct 2022) (CVE-2022-21632)
- mysql: Server: Replication unspecified vulnerability (CPU Oct 2022) (CVE-2022-21633)
- mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21637)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-21640)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-39400)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-39408)
- mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022) (CVE-2022-39410)
- mysql: Server: DML unspecified vulnerability (CPU Jan 2023) (CVE-2023-21836)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21863)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21864)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21865)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21867)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21868)
- mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21869)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21870)
- mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21871)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21873)
- mysql: Server: Security: Encryption unspecified vulnerability (CPU Jan 2023) (CVE-2023-21875)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21876)
- mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21877)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21878)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21879)
- mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21880)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21881)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21883)
- mysql: Server: GIS unspecified vulnerability (CPU Jan 2023) (CVE-2023-21887)
- mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2023) (CVE-2023-21917)
- mysql: Server: Thread Pooling unspecified vulnerability (CPU Jan 2023) (CVE-2023-21874)
- mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023) (CVE-2023-21882)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Package | Affected Version |
---|---|
pkg:rpm/almalinux/mysql?arch=x86_64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql?arch=aarch64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-server?arch=x86_64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-server?arch=aarch64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-errmsg?arch=x86_64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-errmsg?arch=aarch64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-common?arch=x86_64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
pkg:rpm/almalinux/mysql-common?arch=aarch64&distro=almalinux-9.2 | < 8.0.32-1.el9_2 |
- ID
- ALSA-2023:2621
- Severity
- important
- URL
- https://errata.almalinux.org/ALSA-2023:2621.html
- Published
-
2023-05-09T00:00:00
(16 months ago) - Modified
-
2023-05-11T23:14:49
(16 months ago) - Rights
- Copyright 2023 AlmaLinux OS
- Other Advisories
-
- ALAS-2023-1768
- ALSA-2023:3087
- ELSA-2023-2621
- ELSA-2023-3087
- FEDORA-2023-d332f0b6a3
- FEDORA-2023-e449235964
- FREEBSD:4B9C1C17-587C-11ED-856E-D4C9EF517024
- FREEBSD:DC49F6DC-99D2-11ED-86E9-D4C9EF517024
- FREEBSD:F504A8D2-E105-11ED-85F6-84A93843EB75
- MS:CVE-2022-21594
- MS:CVE-2022-21599
- MS:CVE-2022-21604
- MS:CVE-2022-21608
- MS:CVE-2022-21611
- MS:CVE-2022-21617
- MS:CVE-2022-21625
- MS:CVE-2022-21632
- MS:CVE-2022-21633
- MS:CVE-2022-21637
- MS:CVE-2022-21640
- MS:CVE-2022-39400
- MS:CVE-2022-39408
- MS:CVE-2022-39410
- MS:CVE-2023-21875
- MS:CVE-2023-21876
- MS:CVE-2023-21877
- MS:CVE-2023-21878
- MS:CVE-2023-21879
- MS:CVE-2023-21880
- MS:CVE-2023-21881
- MS:CVE-2023-21882
- MS:CVE-2023-21883
- MS:CVE-2023-21887
- RHSA-2023:2621
- RHSA-2023:3087
- USN-5696-1
- USN-5696-2
- USN-5823-1
- USN-6060-1
- USN-6060-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/almalinux/mysql?arch=x86_64&distro=almalinux-9.2 | almalinux | mysql | < 8.0.32-1.el9_2 | almalinux-9.2 | x86_64 | |
Affected | pkg:rpm/almalinux/mysql?arch=aarch64&distro=almalinux-9.2 | almalinux | mysql | < 8.0.32-1.el9_2 | almalinux-9.2 | aarch64 | |
Affected | pkg:rpm/almalinux/mysql-server?arch=x86_64&distro=almalinux-9.2 | almalinux | mysql-server | < 8.0.32-1.el9_2 | almalinux-9.2 | x86_64 | |
Affected | pkg:rpm/almalinux/mysql-server?arch=aarch64&distro=almalinux-9.2 | almalinux | mysql-server | < 8.0.32-1.el9_2 | almalinux-9.2 | aarch64 | |
Affected | pkg:rpm/almalinux/mysql-errmsg?arch=x86_64&distro=almalinux-9.2 | almalinux | mysql-errmsg | < 8.0.32-1.el9_2 | almalinux-9.2 | x86_64 | |
Affected | pkg:rpm/almalinux/mysql-errmsg?arch=aarch64&distro=almalinux-9.2 | almalinux | mysql-errmsg | < 8.0.32-1.el9_2 | almalinux-9.2 | aarch64 | |
Affected | pkg:rpm/almalinux/mysql-common?arch=x86_64&distro=almalinux-9.2 | almalinux | mysql-common | < 8.0.32-1.el9_2 | almalinux-9.2 | x86_64 | |
Affected | pkg:rpm/almalinux/mysql-common?arch=aarch64&distro=almalinux-9.2 | almalinux | mysql-common | < 8.0.32-1.el9_2 | almalinux-9.2 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |