[FREEBSD:F504A8D2-E105-11ED-85F6-84A93843EB75] MySQL -- Multiple vulnerabilities

Severity Critical

Affected Packages 5

CVEs 25

Oracle reports:

  This Critical Patch Update contains 34 new security patches, plus
    additional third party patches noted below, for Oracle MySQL. 11 of
    these vulnerabilities may be remotely exploitable without
    authentication, i.e., may be exploited over a network without
    requiring user credentials.

Package	Affected Version
pkg:freebsd/mysql-server80	< 8.0.33
pkg:freebsd/mysql-server57	< 5.7.42
pkg:freebsd/mysql-connector-java	< 8.0.33
pkg:freebsd/mysql-client80	< 8.0.33
pkg:freebsd/mysql-client57	< 5.7.42

ID

FREEBSD:F504A8D2-E105-11ED-85F6-84A93843EB75

Severity

critical

Severity from

CVE-2022-37434

URL

http://vuxml.freebsd.org/freebsd/f504a8d2-e105-11ed-85f6-84a93843eb75.html

Published

2023-04-19T00:00:00
(17 months ago)

Modified

2023-04-22T00:00:00
(17 months ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixMSQL

Type	Package URL	Name / Product	Version
Affected	pkg:freebsd/mysql-server80	mysql-server80	< 8.0.33
Affected	pkg:freebsd/mysql-server57	mysql-server57	< 5.7.42
Affected	pkg:freebsd/mysql-connector-java	mysql-connector-java	< 8.0.33
Affected	pkg:freebsd/mysql-client80	mysql-client80	< 8.0.33
Affected	pkg:freebsd/mysql-client57	mysql-client57	< 5.7.42

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date