AlmaLinux 2325 Published by

A mysql security, bug fix, and enhancement update has been released for AlmaLinux 9.



ALSA-2022:6590 Moderate: mysql security, bug fix, and enhancement update


Type:
security

Severity:
moderate

Release date:
2022-10-19

Description
The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589)
Security Fix(es):
* mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479)
* mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413)
* mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415)
* mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423)
* mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444)
* mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427)
* mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454)
* mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455)
* mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457)
* mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460)
* mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569)
* mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515)
* mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539)
* mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534)
* mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547)
* mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Default logrotate set to wrong log file (BZ#2122592)

References:
RHSA-2022:6590
CVE-2022-21412
CVE-2022-21413
CVE-2022-21414
CVE-2022-21415
CVE-2022-21417
CVE-2022-21418
CVE-2022-21423
CVE-2022-21425
CVE-2022-21427
CVE-2022-21435
CVE-2022-21436
CVE-2022-21437
CVE-2022-21438
CVE-2022-21440
CVE-2022-21444
CVE-2022-21451
CVE-2022-21452
CVE-2022-21454
CVE-2022-21455
CVE-2022-21457
CVE-2022-21459
CVE-2022-21460
CVE-2022-21462
CVE-2022-21478
CVE-2022-21479
CVE-2022-21509
CVE-2022-21515
CVE-2022-21517
CVE-2022-21522
CVE-2022-21525
CVE-2022-21526
CVE-2022-21527
CVE-2022-21528
CVE-2022-21529
CVE-2022-21530
CVE-2022-21531
CVE-2022-21534
CVE-2022-21537
CVE-2022-21538
CVE-2022-21539
CVE-2022-21547
CVE-2022-21553
CVE-2022-21556
CVE-2022-21569
ALSA-2022:6590

Updates packages:
mysql-server-8.0.30-3.el9_0.x86_64.rpm
mysql-8.0.30-3.el9_0.x86_64.rpm
mysql-errmsg-8.0.30-3.el9_0.x86_64.rpm
mysql-common-8.0.30-3.el9_0.x86_64.rpm
mysql-8.0.30-3.el9_0.ppc64le.rpm
mysql-common-8.0.30-3.el9_0.ppc64le.rpm
mysql-errmsg-8.0.30-3.el9_0.ppc64le.rpm
mysql-server-8.0.30-3.el9_0.ppc64le.rpm
mysql-server-8.0.30-3.el9_0.aarch64.rpm
mysql-8.0.30-3.el9_0.aarch64.rpm
mysql-common-8.0.30-3.el9_0.aarch64.rpm
mysql-errmsg-8.0.30-3.el9_0.aarch64.rpm
mysql-8.0.30-3.el9_0.s390x.rpm
mysql-common-8.0.30-3.el9_0.s390x.rpm
mysql-server-8.0.30-3.el9_0.s390x.rpm
mysql-errmsg-8.0.30-3.el9_0.s390x.rpm
mysql-devel-8.0.30-3.el9_0.x86_64.rpm
mysql-libs-8.0.30-3.el9_0.x86_64.rpm
mysql-test-8.0.30-3.el9_0.x86_64.rpm
mysql-libs-8.0.30-3.el9_0.ppc64le.rpm
mysql-test-8.0.30-3.el9_0.ppc64le.rpm
mysql-devel-8.0.30-3.el9_0.ppc64le.rpm
mysql-libs-8.0.30-3.el9_0.aarch64.rpm
mysql-devel-8.0.30-3.el9_0.aarch64.rpm
mysql-test-8.0.30-3.el9_0.aarch64.rpm
mysql-libs-8.0.30-3.el9_0.s390x.rpm
mysql-test-8.0.30-3.el9_0.s390x.rpm
mysql-devel-8.0.30-3.el9_0.s390x.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2022:6590 Moderate: mysql security, bug fix, and enhancement update