[ALSA-2024:0894] Moderate: mysql:8.0 security update
Type:
security
Severity:
moderate
Release date:
2024-02-28
Description:
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. Security Fix(es): * mysql: InnoDB unspecified vulnerability (CPU Apr 2023) (CVE-2023-21911) * mysql: Server: DDL unspecified vulnerability (CPU Apr 2023) (CVE-2023-21919, CVE-2023-21929, CVE-2023-21933) * mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2023) (CVE-2023-21920, CVE-2023-21935, CVE-2023-21945, CVE-2023-21946, CVE-2023-21976, CVE-2023-21977, CVE-2023-21982) * mysql: Server: Components Services unspecified vulnerability (CPU Apr 2023) (CVE-2023-21940, CVE-2023-21947, CVE-2023-21962) * mysql: Server: Partition unspecified vulnerability (CPU Apr 2023) (CVE-2023-21953, CVE-2023-21955) * mysql: Server: JSON unspecified vulnerability (CPU Apr 2023) (CVE-2023-21966) * mysql: Server: DML unspecified vulnerability (CPU Apr 2023) (CVE-2023-21972) * mysql: Client programs unspecified vulnerability (CPU Apr 2023) (CVE-2023-21980) * mysql: Server: Replication unspecified vulnerability (CPU Jul 2023) (CVE-2023-22005, CVE-2023-22007, CVE-2023-22057) * mysql: InnoDB unspecified vulnerability (CPU Jul 2023) (CVE-2023-22008) * mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2023) (CVE-2023-22032, CVE-2023-22059, CVE-2023-22064, CVE-2023-22065, CVE-2023-22070, CVE-2023-22078, CVE-2023-22079, CVE-2023-22092, CVE-2023-22103, CVE-2023-22110, CVE-2023-22112) * mysql: InnoDB unspecified vulnerability (CPU Jul 2023) (CVE-2023-22033) * mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2023) (CVE-2023-22046, CVE-2023-22054, CVE-2023-22056) * mysql: Client programs unspecified vulnerability (CPU Jul 2023) (CVE-2023-22053) * mysql: Server: DDL unspecified vulnerability (CPU Jul 2023) (CVE-2023-22058) * mysql: InnoDB unspecified vulnerability (CPU Oct 2023) (CVE-2023-22066, CVE-2023-22068, CVE-2023-22084, CVE-2023-22097, CVE-2023-22104, CVE-2023-22114) * mysql: Server: UDF unspecified vulnerability (CPU Oct 2023) (CVE-2023-22111) * mysql: Server: DML unspecified vulnerability (CPU Oct 2023) (CVE-2023-22115) * mysql: Server: RAPID unspecified vulnerability (CPU Jan 2024) (CVE-2024-20960) * mysql: Server: Security: Encryption unspecified vulnerability (CPU Jan 2024) (CVE-2024-20963) * mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2024) (CVE-2024-20964) * mysql: Server: Replication unspecified vulnerability (CPU Jan 2024) (CVE-2024-20967) * mysql: Server: Options unspecified vulnerability (CPU Jan 2024) (CVE-2024-20968) * mysql: Server: DDL unspecified vulnerability (CPU Jan 2024) (CVE-2024-20969) * mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2024) (CVE-2024-20961, CVE-2024-20962, CVE-2024-20965, CVE-2024-20966, CVE-2024-20970, CVE-2024-20971, CVE-2024-20972, CVE-2024-20973, CVE-2024-20974, CVE-2024-20976, CVE-2024-20977, CVE-2024-20978, CVE-2024-20982) * mysql: Server: DDL unspecified vulnerability (CPU Jan 2024) (CVE-2024-20981) * mysql: Server: DML unspecified vulnerability (CPU Jan 2024) (CVE-2024-20983) * mysql: Server : Security : Firewall unspecified vulnerability (CPU Jan 2024) (CVE-2024-20984) * mysql: Server: UDF unspecified vulnerability (CPU Jan 2024) (CVE-2024-20985) * zstd: mysql: buffer overrun in util.c (CVE-2022-4899) * mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2023) (CVE-2023-22038) * mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2023) (CVE-2023-22048) * mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2023) (CVE-2023-22113) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Fix for MySQL bug #33630199 in 8.0.32 introduces regression when --set-gtid-purged=OFF (AlmaLinux-22452)
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 mysql-server-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm 09014bb8a269af51f6bf2134f401d985b38e28f2f4b59cc73a98a19a875657f0
aarch64 mysql-libs-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm 0ceaab88b9d314fe36a4ad2739e4ac28f0726ab44d765cce6b16743796bb51be
aarch64 mysql-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm 3b120e61a2e4964fd0b225381a684f7d8cf238e3399821c4823e9513d18a6713
aarch64 mysql-devel-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm 5546a82519c0caeb9e3f569f69c7452f4afffb61acdb53101584711160e91a43
aarch64 mysql-test-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm 6778aba3a7883647e745f9122be1a18a34378336211b283743700f6efc3e2f5d
aarch64 mysql-common-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm bdf2b5c9c37f8d72d3d975051346a72d4a41930eacac17503db0be07264d927b
aarch64 mecab-ipadic-EUCJP-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.aarch64.rpm bfd023117a52dcf9986284c9558a973c78a257078d76983f4b01b6c739f8c0e2
aarch64 mecab-devel-0.996-2.module_el8.6.0+3340+d764b636.aarch64.rpm c0b14c42d4982d3da9aee02be557152498892b0b4e4a2434a6881bb17e53eba3
aarch64 mecab-0.996-2.module_el8.6.0+3340+d764b636.aarch64.rpm e1c7024f127b0836925cb951490c38855bc0f97fa958be73c2b0ab72a8dcb6cc
aarch64 mysql-errmsg-8.0.36-1.module_el8.9.0+3735+82bd6c11.aarch64.rpm e96973855dafc687db63ba2be818beaa41278af988ad5e120c3454fc63c1bbe5
aarch64 mecab-ipadic-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.aarch64.rpm fc3f77b5fcaa8e4ab1f6f41fb62a85beef210a516ce6011b0e5b577ce9ab25d3
ppc64le mysql-libs-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm 21a5ac7892e8b01213d49bb48de2dae19b81b87393d94d8bd8cb326ef108448e
ppc64le mysql-test-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm 37b62037f7e9bcccded7e3b9ac08aea967d28f7c8e39aa073dcc2e53b53d2b92
ppc64le mecab-devel-0.996-2.module_el8.6.0+3340+d764b636.ppc64le.rpm 5f0fdccc4a6fb2dc81e10b56b0030ad609bb2a3967e798db8fd5bb8543b91cce
ppc64le mecab-ipadic-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.ppc64le.rpm 647ca52ce18fd28458d3dd5f66b2fcce7833184f043fa3825aff73b90ca98992
ppc64le mysql-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm 9c21ac68e5827651ca1f8673b8b0264b7c7c03ba521a6ab94046c3122a6c864d
ppc64le mysql-devel-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm b166c42649ae0a5ba768111f2577f572fd188ab248fbcf3640f3c568c780aebf
ppc64le mysql-server-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm bafefc19ffec0ad161299ecd74209ff49046d3665e20fabb956fba665a38000b
ppc64le mysql-errmsg-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm c163d64f4c7bf314d4bea28542f5f2f028e137a2bdbfabb4bc9079e2188d79d0
ppc64le mecab-ipadic-EUCJP-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.ppc64le.rpm c4483a52848d75b301b2b8546e2225b43efbb42b9728a5d96257f8d47218d506
ppc64le mysql-common-8.0.36-1.module_el8.9.0+3735+82bd6c11.ppc64le.rpm d07fbbf2f6d2bd4d459b8556639fb38d0c5ffebd5f32f87daa565fca873634b4
ppc64le mecab-0.996-2.module_el8.6.0+3340+d764b636.ppc64le.rpm dbce2d021f017d84496e6347e8815843d7c012e85d4da679f1ac185095f9268d
s390x mysql-test-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm 04c0d00c6e19bf35ab0bb4686cd1be92f9a2bbb1a7f36548bb58e19c5f0b2636
s390x mecab-ipadic-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.s390x.rpm 2ecc38dc395cc34bd5a62791f2bb828e7a3970a378a406e6c5a92945d1c69856
s390x mysql-errmsg-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm 4bfc6a189938f24e52c78e18d9384c2c52745e885e7cc859e3f40897e28c19fc
s390x mysql-common-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm 5434c5c4a4d75966f3a7795f7c5bd8f73a3dbe9855a1b8de7e0ce93e8173b3bb
s390x mysql-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm 79ba3446fe4960d663dce6a5379e6d23f2f48b3bf069e19076a2eaaabbe6e71b
s390x mecab-ipadic-EUCJP-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.s390x.rpm 85ab51ff2897e18fb0fa62f38a21f7f77c1037510fcb24f6fc7f9580966833ff
s390x mecab-devel-0.996-2.module_el8.6.0+3340+d764b636.s390x.rpm 95fbafd6a495d411511dcfabd6b0f0746e44e7a7bcc70330024e0022229ee5d3
s390x mecab-0.996-2.module_el8.6.0+3340+d764b636.s390x.rpm ac9101824269dda084c450648ac939c4c8fc017d05d6f1a13bf138bda748fa52
s390x mysql-devel-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm b7a5215bfdadeb9e888a2126b27658d5139774c9a3c366f9ecca34fa84a2e804
s390x mysql-server-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm e885f6940993fd5302bf4c716d89a1ef39209a4a63e4c5a2f8c2bbd9221a008a
s390x mysql-libs-8.0.36-1.module_el8.9.0+3735+82bd6c11.s390x.rpm f61e4c68ef0bfdf712a603764c4c1bfd59b24b56da6b47cb02bba66b0236fd09
x86_64 mecab-ipadic-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.x86_64.rpm 01c25f1a3512236bd73267caa3bea6476ca3a7c377c5977467aeb9f40023dbdd
x86_64 mysql-common-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm 428ca60b216d5269309a861e0b3870c42e5d94ad4aa05054ce5e609e01507741
x86_64 mysql-devel-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm 4b3578bbdca44a2c48d17d86ceeb1200cfa686ff4b65346d967cb01de790d6b4
x86_64 mysql-errmsg-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm 674707f08844aaa99801230a68153aadc452279481d6c575a0a3f5acc16b6940
x86_64 mysql-test-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm 93920180591cbe41fea69ddc96b2b0044923e4bfa70187ab9c52efcdd39f2ca6
x86_64 mysql-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm 9e4a5f37d7bdc6873adcaf9e55ea3ff870fc7f6dbefa263e3e7dbec129dab55d
x86_64 mecab-0.996-2.module_el8.6.0+3340+d764b636.x86_64.rpm ad92d845da106629c38f53bf00066da345d350ac0d997f8b0ab94651b56637de
x86_64 mysql-libs-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm cef65cd4a92d7cf4904758bad6d59a4194bcd02f3951727fbe0954f6bf10f154
x86_64 mysql-server-8.0.36-1.module_el8.9.0+3735+82bd6c11.x86_64.rpm d302e58d5842e7aec33742534d5af340160710c9ce168709f6ed616e047c50b9
x86_64 mecab-devel-0.996-2.module_el8.6.0+3340+d764b636.x86_64.rpm e621458cd621eb4c60bf22745f688aa1016072241506d301ed4fc5dba4dfd764
x86_64 mecab-ipadic-EUCJP-2.7.0.20070801-16.module_el8.6.0+3340+d764b636.x86_64.rpm f6da46b9d0e7500a200617a7e0c49f0c88237403ee64287503a0beea96719a3a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.