1. Home
  2. Security Advisories
  3. FreeBSD
  4. FREEBSD:38A4A043-E937-11EB-9B84-D4C9EF517024

[FREEBSD:38A4A043-E937-11EB-9B84-D4C9EF517024] MySQL -- Multiple vulnerabilities

Severity High
Affected Packages 5
CVEs 38
Info Packages References Vulnerabilities

Oracle reports:

  This Critical Patch Update contains 41 new security patches for
    Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable
    without authentication, i.e., may be exploited over a network without
    requiring user credentials.
    The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle
    MySQL is 8.8.
  MariaDB is affected by CVE-2021-2372 and CVE-2021-2389 only.
Package Affected Version
pkg:freebsd/mysql80-server < 8.0.26
pkg:freebsd/mysql57-server < 5.7.35
pkg:freebsd/mariadb105-server < 10.5.12
pkg:freebsd/mariadb104-server < 10.4.21
pkg:freebsd/mariadb103-server < 10.3.31
ID
FREEBSD:38A4A043-E937-11EB-9B84-D4C9EF517024
Severity
high
Severity from
CVE-2019-17543
URL
http://vuxml.freebsd.org/freebsd/38a4a043-e937-11eb-9b84-d4c9ef517024.html
Published
2021-07-20T00:00:00
(3 years ago)
Modified
2021-07-20T00:00:00
(3 years ago)
Rights
FreeBSD VuXML Security Team
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:freebsd/mysql80-server mysql80-server < 8.0.26
Affected pkg:freebsd/mysql57-server mysql57-server < 5.7.35
Affected pkg:freebsd/mariadb105-server mariadb105-server < 10.5.12
Affected pkg:freebsd/mariadb104-server mariadb104-server < 10.4.21
Affected pkg:freebsd/mariadb103-server mariadb103-server < 10.3.31
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date