==========================================================================
Ubuntu Security Notice USN-2575-1
April 21, 2015
mysql-5.5 vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 14.10
– Ubuntu 14.04 LTS
– Ubuntu 12.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
– mysql-5.5: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update includes
a new upstream MySQL version to fix these issues. MySQL has been updated to
5.5.43.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-42.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-43.html
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.10:
mysql-server-5.5 5.5.43-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.43-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.43-0ubuntu0.12.04.1
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2575-1
CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501,
CVE-2015-0505, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.43-0ubuntu0.14.10.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.43-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.43-0ubuntu0.12.04.1
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1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=CPcL
—–END PGP SIGNATURE—–
—