[FREEBSD:22DF5074-71CD-11EE-85EB-84A93843EB75] MySQL -- Multiple vulnerabilities

Severity Critical

Affected Packages 5

CVEs 30

Oracle reports:

  This Critical Patch Update contains 37 new security patches, plus
    additional third party patches noted below, for Oracle MySQL. 9 of
    these vulnerabilities may be remotely exploitable without
    authentication, i.e., may be exploited over a network without
    requiring user credentials.

Package	Affected Version
pkg:freebsd/mysql80-server	< 8.0.35
pkg:freebsd/mysql57-server	< 5.7.44
pkg:freebsd/mysql-connector-odbc	< 8.1.1
pkg:freebsd/mysql-connector-j	< 8.1.1
pkg:freebsd/mysql-connector-c%2B%2B	< 8.0.35

ID

FREEBSD:22DF5074-71CD-11EE-85EB-84A93843EB75

Severity

critical

Severity from

CVE-2023-38545

URL

http://vuxml.freebsd.org/freebsd/22df5074-71cd-11ee-85eb-84a93843eb75.html

Published

2023-10-17T00:00:00
(11 months ago)

Modified

2023-10-23T00:00:00
(11 months ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			https://www.oracle.com/security-alerts/cpuoct2023.html#AppendixMSQL

Type	Package URL	Name / Product	Version
Affected	pkg:freebsd/mysql80-server	mysql80-server	< 8.0.35
Affected	pkg:freebsd/mysql57-server	mysql57-server	< 5.7.44
Affected	pkg:freebsd/mysql-connector-odbc	mysql-connector-odbc	< 8.1.1
Affected	pkg:freebsd/mysql-connector-j	mysql-connector-j	< 8.1.1
Affected	pkg:freebsd/mysql-connector-c%2B%2B	mysql-connector-c++	< 8.0.35

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date