Lucene search
Cloud FoundryCFOUNDRY:D682FBE788AF96F253E5EB0036D5025BHistoryJun 23, 2020 - 12:00 a.m.
MySQL Security Updates - January 2020 | Cloud Foundry
2020-06-2300:00:00
Cloud Foundry
www.cloudfoundry.org
11
0.001 Low
EPSS
Percentile
45.4%
Severity
Medium
Vendor
Cloud Foundry Foundation
Description
Cloud Foundry Deployment, through its consumption of Percona XtraDB Cluster Release, is vulnerable to various MySQL vulnerabilites patched in the January 2020 Critical Patch Update, including:
- CVE-2020-2572
- CVE-2020-2577
- CVE-2020-2579
- CVE-2020-2580
- CVE-2020-2584
- CVE-2020-2588
- CVE-2020-2589
- CVE-2020-2627
- CVE-2020-2660
- CVE-2020-2679
- CVE-2020-2686
- CVE-2020-2694
Affected Cloud Foundry Products and Versions
Severity is medium unless otherwise noted.
- Percona XtraDB Cluster Release
- All versions prior to v0.27.0
- CF Deployment
- All versions prior to v13.5.0
Mitigation
Users of affected products are strongly encouraged to follow the mitigations below. The Cloud Foundry project recommends upgrading the following releases:
- Percona XtraDB Cluster Release
- Upgrade All versions to v0.27.0 or greater
- CF Deployment
- Upgrade All versions to v13.5.0 or greater
References
History
2020-06-23: Initial vulnerability report published.
Related
openvas
openvas
Oracle MySQL Server 8.0 <= 8.0.18 Security Update (cpujan2020) - Linux
2020-01-17 00:00:00
Oracle MySQL Server 8.0 <= 8.0.18 Security Update (cpujan2020) - Windows
2020-01-17 00:00:00
Oracle MySQL Server 5.7 <= 5.7.28 Security Update (cpujan2020) - Linux
2020-01-17 00:00:00
cloudfoundry
cloudfoundry
USN-4250-2: MariaDB vulnerability | Cloud Foundry
2021-02-10 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : MySQL vulnerabilities (USN-4250-1)
2020-01-28 00:00:00
FreeBSD : MySQL -- Multiple vulerabilities (a6cf65ad-37d2-11ea-a1c7-b499baebfeaf)
2020-01-16 00:00:00
MySQL 5.7.x < 5.7.29 Multiple Vulnerabilities (Jan 2020 CPU)
2020-01-16 00:00:00
freebsd
freebsd
MySQL -- Multiple vulerabilities
2020-01-14 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2020-01-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-08-20 02:25:51
Denial Of Service (DoS)
2020-08-20 02:25:47
Information Disclosure
2020-08-20 02:25:49
ubuntucve
ubuntucve
cve
cve
osv
osv
nvd
nvd
cvelist
cvelist
redhatcve
redhatcve
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0284
2020-03-18 00:00:00
Moderate Photon OS Security Update - PHSA-2020-0284
2020-04-02 00:00:00
Moderate Photon OS Security Update - PHSA-2020-0220
2020-03-13 00:00:00
prion
prion
Code injection
2020-01-15 17:15:00
Design/Logic Flaw
2020-01-15 17:15:00
Code injection
2020-01-15 17:15:00
ibm
ibm
symantec
symantec
Oracle MySQL Server CVE-2020-2580 Remote Security Vulnerability
2020-01-14 00:00:00
oraclelinux
oraclelinux
mysql:8.0 security update
2020-09-16 00:00:00
almalinux
almalinux
Important: mysql:8.0 security update
2020-09-14 12:23:24
redhat
redhat
(RHSA-2020:3518) Important: rh-mysql80-mysql security update
2020-08-19 13:45:28
(RHSA-2020:3757) Important: mysql:8.0 security update
2020-09-15 18:10:12
(RHSA-2020:3755) Important: mysql:8.0 security update
2020-09-15 16:04:48
rocky
rocky
mysql:8.0 security update
2020-09-14 12:23:24
gentoo
gentoo
MySQL: Multiple vulnerabilities
2021-05-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00