You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa mysql

Sigurnosni nedostaci programskog paketa mysql

by ncert - 0

==========================================================================
Ubuntu Security Notice USN-3357-1
July 20, 2017

mysql-5.5, mysql-5.7 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 17.04
– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
– mysql-5.7: MySQL database
– mysql-5.5: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.57 in Ubuntu 14.04 LTS. Ubuntu 16.04 LTS
and Ubuntu 17.04 have been updated to MySQL 5.7.19.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-56.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-57.html
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
mysql-server-5.7 5.7.19-0ubuntu0.17.04.1

Ubuntu 16.04 LTS:
mysql-server-5.7 5.7.19-0ubuntu0.16.04.1

Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.57-0ubuntu0.14.04.1

In general, a standard system update will make all the necessary changes.

References:
https://www.ubuntu.com/usn/usn-3357-1
CVE-2017-3529, CVE-2017-3633, CVE-2017-3634, CVE-2017-3635,
CVE-2017-3636, CVE-2017-3637, CVE-2017-3638, CVE-2017-3639,
CVE-2017-3640, CVE-2017-3641, CVE-2017-3642, CVE-2017-3643,
CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648,
CVE-2017-3649, CVE-2017-3650, CVE-2017-3651, CVE-2017-3652,
CVE-2017-3653

Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.19-0ubuntu0.17.04.1
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.19-0ubuntu0.16.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.57-0ubuntu0.14.04.1

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=0HMS
—–END PGP SIGNATURE—–

 

==========================================================================

Ubuntu Security Notice USN-3357-2

July 24, 2017

 

mysql-5.5 vulnerabilities

==========================================================================

 

A security issue affects these releases of Ubuntu and its derivatives:

 

– Ubuntu 12.04 ESM

 

Summary:

 

Several security issues were fixed in MySQL.

 

Software Description:

– mysql-5.5: MySQL database

 

Details:

 

USN-3357-1 fixed several vulnerabilities in MySQL. This update

provides the corresponding update for Ubuntu 12.04 ESM.

 

Original advisory details:

 

 Multiple security issues were discovered in MySQL and this update

 includes new upstream MySQL versions to fix these issues.

 

 MySQL has been updated to 5.5.57 in Ubuntu 12.04 ESM.

 

 In addition to security fixes, the updated packages contain bug fixes,

 new features, and possibly incompatible changes.

 

 Please see the following for more information:

 http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-57.html

 http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

 

Update instructions:

 

The problem can be corrected by updating your system to the following

package versions:

 

Ubuntu 12.04 ESM:

  mysql-server-5.5                5.5.57-0ubuntu0.12.04.1

 

In general, a standard system update will make all the necessary

changes.

 

References:

  https://www.ubuntu.com/usn/usn-3357-2

  https://www.ubuntu.com/usn/usn-3357-1

  CVE-2017-3302, CVE-2017-3305, CVE-2017-3308, CVE-2017-3309,

  CVE-2017-3329, CVE-2017-3453, CVE-2017-3456, CVE-2017-3461,

  CVE-2017-3462, CVE-2017-3463, CVE-2017-3464, CVE-2017-3600,

  CVE-2017-3635, CVE-2017-3636, CVE-2017-3641, CVE-2017-3648,

  CVE-2017-3651, CVE-2017-3652, CVE-2017-3653

—–BEGIN PGP SIGNATURE—–

Version: GnuPG v2

 

iQIcBAABCAAGBQJZdmRwAAoJEEW851uECx9pZX8P/3mGcquZtV7XttpwHb0SnEEJ

KGkC69XHK0/FuJtTvzueV1VEPseEdfZc+1Bjx1UzpkF2hRQDZcSO2uR3CZGExbCF

O7MD2MvN8KmDjWk+iI7iaQj8Tf4rRmbdFmNFDoo3y8IXclQt2Ltne3g0Fx3zdCMs

K2mp0Z6/SDZm821sdnbsnvqHf2q7QLUyjny3L3qfihUTakuZYXGNACB1z7VIs2GR

SK6Cb5zNQC9eZ/nmGbTJ4jA1bJbXgqaNPI9nqVK+9u9PP1wE48bOhHoBPooDSoA6

eIfh+5CjQ4M2Z67UwxXRv/5XRpAIgKfjxMuUCQWy4OMfX15+YKxilUZcVuBLGkqS

fV8N7PnNVQPomAsu074FwR8nF7OoOUY6tdQSkC4PIx1Rj1K15IqsSUYR2Bv8i0mV

Gl5cVO7xkYUQMhyf85YSeIUD4i4ZHxMYOqO3PwPx/kdTwSUk/k0lumYJNhZN9Svu

oQfo9zktQ2cEmCUmjB7IBTLFj4Gn4C9/rCDJP8V1DoExMUF/6WRmUWAtXxfWpkr/

a06+GaL2X5Yl2FDswOMjpUsiqU+H2h82413KF+BXykINyFowBeIVnMwgubVwWzCc

G4buWWkSciEEpKB0UdR+sq+tYNAv7xVavQIMsDW8HZNLusJPPVY/JLp3Ow5HeoYZ

loZOeAj4RdtfJc7qjUln

=R9W0

—–END PGP SIGNATURE—–

– 

 
ncert
Top
More in Preporuke
Sigurnosni nedostaci jezgre operacijskog sustava

Otkriveni su sigurnosni nedostaci u jezgri operacijskog sustava Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanjem usluge, otkrivanje osjetljivih...

Close