UbuntuUSN-3357-1MySQL vulnerabilities
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
Confidence
Low
EPSS
Percentile
71.5%
Releases
- Ubuntu 17.04
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- mysql-5.5 - MySQL database
- mysql-5.7 - MySQL database
Details
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 5.5.57 in Ubuntu 14.04 LTS. Ubuntu 16.04 LTS
and Ubuntu 17.04 have been updated to MySQL 5.7.19.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
Please see the following for more information:
<http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-56.html>
<http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-57.html>
<http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html>
<http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html>
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 17.04 | noarch | mysql-server-5.7 | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | libmysqlclient-dev | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | libmysqlclient20 | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | libmysqlclient20-dbgsym | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | libmysqld-dev | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | mysql-client | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | mysql-client-5.7 | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | mysql-client-5.7-dbgsym | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | mysql-client-core-5.7 | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
| Ubuntu | 17.04 | noarch | mysql-client-core-5.7-dbgsym | < 5.7.19-0ubuntu0.17.04.1 | UNKNOWN |
References
ubuntu.com/security/CVE-2017-3529
ubuntu.com/security/CVE-2017-3633
ubuntu.com/security/CVE-2017-3634
ubuntu.com/security/CVE-2017-3635
ubuntu.com/security/CVE-2017-3636
ubuntu.com/security/CVE-2017-3637
ubuntu.com/security/CVE-2017-3638
ubuntu.com/security/CVE-2017-3639
ubuntu.com/security/CVE-2017-3640
ubuntu.com/security/CVE-2017-3641
ubuntu.com/security/CVE-2017-3642
ubuntu.com/security/CVE-2017-3643
ubuntu.com/security/CVE-2017-3644
ubuntu.com/security/CVE-2017-3645
ubuntu.com/security/CVE-2017-3647
ubuntu.com/security/CVE-2017-3648
ubuntu.com/security/CVE-2017-3649
ubuntu.com/security/CVE-2017-3650
ubuntu.com/security/CVE-2017-3651
ubuntu.com/security/CVE-2017-3652
ubuntu.com/security/CVE-2017-3653
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
Confidence
Low
EPSS
Percentile
71.5%