[FREEBSD:38A4A043-E937-11EB-9B84-D4C9EF517024] MySQL -- Multiple vulnerabilities
Severity
High
Affected Packages
5
CVEs
38
Oracle reports:
This Critical Patch Update contains 41 new security patches for
Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable
without authentication, i.e., may be exploited over a network without
requiring user credentials.
The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle
MySQL is 8.8.
MariaDB is affected by CVE-2021-2372 and CVE-2021-2389 only.
Package | Affected Version |
---|---|
pkg:freebsd/mysql80-server | < 8.0.26 |
pkg:freebsd/mysql57-server | < 5.7.35 |
pkg:freebsd/mariadb105-server | < 10.5.12 |
pkg:freebsd/mariadb104-server | < 10.4.21 |
pkg:freebsd/mariadb103-server | < 10.3.31 |
- ID
- FREEBSD:38A4A043-E937-11EB-9B84-D4C9EF517024
- Severity
- high
- Severity from
- CVE-2019-17543
- URL
- http://vuxml.freebsd.org/freebsd/38a4a043-e937-11eb-9b84-d4c9ef517024.html
- Published
-
2021-07-20T00:00:00
(3 years ago) - Modified
-
2021-07-20T00:00:00
(3 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
-
- ALAS-2021-1544
- ALAS2-2021-1622
- ALAS2-2024-2502
- ALPINE:CVE-2019-17543
- ALPINE:CVE-2021-22884
- ALPINE:CVE-2021-22901
- ALPINE:CVE-2021-2372
- ALPINE:CVE-2021-2389
- ALPINE:CVE-2021-3450
- ALSA-2021:0734
- ALSA-2021:0735
- ALSA-2021:0744
- ALSA-2021:1024
- ALSA-2021:3590
- ALSA-2022:1556
- ALSA-2022:1557
- ASA-202103-10
- ASA-202106-4
- ASA-202106-5
- ASA-202106-6
- ASA-202106-7
- CISCO-SA-OPENSSL-2021-GHY28DJD
- CURL-CVE-2021-22901
- DSA-4863-1
- ELSA-2021-0734
- ELSA-2021-0735
- ELSA-2021-0744
- ELSA-2021-1024
- ELSA-2021-3590
- ELSA-2021-9151
- ELSA-2022-1556
- ELSA-2022-1557
- FEDORA-2021-6aaba80ba2
- FEDORA-2021-72d5918529
- FEDORA-2021-a760169c3c
- FEDORA-2021-acef1dc8cf
- FEDORA-2021-cbf14ab8f9
- FEDORA-2021-dc4299a8d0
- FEDORA-2021-df40c41094
- FEDORA-2021-eb5b7c53a9
- FEDORA-2021-f6bd75e9d4
- FREEBSD:2F3CD69E-7DEE-11EB-B92E-0022489AD614
- FREEBSD:5A668AB3-8D86-11EB-B8D6-D4C9EF517024
- FREEBSD:C0C1834C-9761-11EB-ACFD-0022489AD614
- GLSA-202103-03
- GLSA-202105-36
- GLSA-202405-29
- MS:CVE-2021-22901
- MS:CVE-2021-2339
- MS:CVE-2021-2340
- MS:CVE-2021-2352
- MS:CVE-2021-2354
- MS:CVE-2021-2356
- MS:CVE-2021-2357
- MS:CVE-2021-3450
- openSUSE-SU-2019:2398-1
- openSUSE-SU-2019:2399-1
- openSUSE-SU-2021:0356-1
- openSUSE-SU-2021:0357-1
- openSUSE-SU-2021:0372-1
- openSUSE-SU-2021:0389-1
- openSUSE-SU-2021:1059-1
- openSUSE-SU-2021:1061-1
- openSUSE-SU-2021:2327-1
- openSUSE-SU-2021:2353-1
- openSUSE-SU-2021:2835-1
- openSUSE-SU-2021:2837-1
- openSUSE-SU-2021:2939-1
- RHSA-2021:0734
- RHSA-2021:0735
- RHSA-2021:0744
- RHSA-2021:1024
- RHSA-2021:3590
- RHSA-2022:1556
- RHSA-2022:1557
- RLSA-2021:0734
- RLSA-2021:0735
- RLSA-2021:0744
- RLSA-2021:3590
- RLSA-2022:1556
- RLSA-2022:1557
- RUSTSEC-2021-0056
- SECADV-20210325-1
- SSA:2021-146-01
- SUSE-SU-2019:2757-1
- SUSE-SU-2021:0648-1
- SUSE-SU-2021:0649-1
- SUSE-SU-2021:0650-1
- SUSE-SU-2021:0651-1
- SUSE-SU-2021:0673-1
- SUSE-SU-2021:0674-1
- SUSE-SU-2021:0686-1
- SUSE-SU-2021:1613-1
- SUSE-SU-2021:2323-1
- SUSE-SU-2021:2326-1
- SUSE-SU-2021:2327-1
- SUSE-SU-2021:2353-1
- SUSE-SU-2021:2620-1
- SUSE-SU-2021:2835-1
- SUSE-SU-2021:2837-1
- SUSE-SU-2021:2939-1
- SUSE-SU-2021:3008-1
- USN-5022-1
- USN-5022-2
- USN-5022-3
- USN-6418-1
Source | # ID | Name | URL |
---|---|---|---|
FreeBSD VuXML | https://www.oracle.com/security-alerts/cpujul2021.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:freebsd/mysql80-server | mysql80-server | < 8.0.26 | ||||
Affected | pkg:freebsd/mysql57-server | mysql57-server | < 5.7.35 | ||||
Affected | pkg:freebsd/mariadb105-server | mariadb105-server | < 10.5.12 | ||||
Affected | pkg:freebsd/mariadb104-server | mariadb104-server | < 10.4.21 | ||||
Affected | pkg:freebsd/mariadb103-server | mariadb103-server | < 10.3.31 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |