FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

MySQL -- Multiple vulnerabilities

Affected packages
mysql57-server < 5.7.35
mysql80-server < 8.0.26
mariadb103-server < 10.3.31
mariadb104-server < 10.4.21
mariadb105-server < 10.5.12

Details

VuXML ID 38a4a043-e937-11eb-9b84-d4c9ef517024
Discovery 2021-07-20
Entry 2021-07-20
Modified 2021-08-04

Oracle reports:

This Critical Patch Update contains 41 new security patches for Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.
The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 8.8.

MariaDB is affected by CVE-2021-2372 and CVE-2021-2389 only.

References

CVE Name CVE-2019-17543
CVE Name CVE-2021-22884
CVE Name CVE-2021-22901
CVE Name CVE-2021-2339
CVE Name CVE-2021-2340
CVE Name CVE-2021-2342
CVE Name CVE-2021-2352
CVE Name CVE-2021-2354
CVE Name CVE-2021-2356
CVE Name CVE-2021-2357
CVE Name CVE-2021-2367
CVE Name CVE-2021-2370
CVE Name CVE-2021-2372
CVE Name CVE-2021-2374
CVE Name CVE-2021-2383
CVE Name CVE-2021-2384
CVE Name CVE-2021-2385
CVE Name CVE-2021-2387
CVE Name CVE-2021-2389
CVE Name CVE-2021-2390
CVE Name CVE-2021-2399
CVE Name CVE-2021-2402
CVE Name CVE-2021-2410
CVE Name CVE-2021-2411
CVE Name CVE-2021-2412
CVE Name CVE-2021-2417
CVE Name CVE-2021-2418
CVE Name CVE-2021-2422
CVE Name CVE-2021-2424
CVE Name CVE-2021-2425
CVE Name CVE-2021-2426
CVE Name CVE-2021-2427
CVE Name CVE-2021-2429
CVE Name CVE-2021-2437
CVE Name CVE-2021-2440
CVE Name CVE-2021-2441
CVE Name CVE-2021-2444
CVE Name CVE-2021-3450
URL https://www.oracle.com/security-alerts/cpujul2021.html