FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

MySQL -- Multiple vulnerabilities

Affected packages
mysql56-client < 5.6.49
mysql56-server < 5.6.49
mysql57-client < 5.7.31
mysql57-server < 5.7.31
mysql80-client < 8.0.21
mysql80-server < 8.0.21

Details

VuXML ID 0ed71663-c369-11ea-b53c-d4c9ef517024
Discovery 2020-07-07
Entry 2020-07-11

Oracle reports:

This Critical Patch Update contains 40 new security patches for Oracle MySQL. 6 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 9.8.

This Pre-Release Announcement provides advance information about the Oracle Critical Patch Update for July 2020, which will be released on Tuesday, July 14, 2020.

References

URL https://www.oracle.com/security-alerts/cpujul2020.html