==========================================================================
Ubuntu Security Notice USN-4070-1
July 24, 2019
mysql-5.7 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 19.04
– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
– mysql-5.7: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update includes
a new upstream MySQL version to fix these issues.
Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.04 have been updated to
MySQL 5.7.27.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-27.html
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 19.04:
mysql-server-5.7 5.7.27-0ubuntu0.19.04.1
Ubuntu 18.04 LTS:
mysql-server-5.7 5.7.27-0ubuntu0.18.04.1
Ubuntu 16.04 LTS:
mysql-server-5.7 5.7.27-0ubuntu0.16.04.1
This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.
References:
https://usn.ubuntu.com/4070-1
CVE-2019-2737, CVE-2019-2738, CVE-2019-2739, CVE-2019-2740,
CVE-2019-2741, CVE-2019-2757, CVE-2019-2758, CVE-2019-2774,
CVE-2019-2778, CVE-2019-2791, CVE-2019-2797, CVE-2019-2805,
CVE-2019-2819
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.27-0ubuntu0.19.04.1
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.27-0ubuntu0.18.04.1
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.27-0ubuntu0.16.04.1
—–BEGIN PGP SIGNATURE—–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=Y02J
—–END PGP SIGNATURE—–
—