FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

MySQL -- Multiple vulnerabilities

Affected packages
mysql-connector-odbc < 8.0.28
mysql-connector-c++ < 8.0.28
mysql-connector-java < 8.0.28
mysql-connector-java51 < 8.0.28
mysql-server55 < 5.5.63
mysql-server56 < 5.6.52
mysql-server57 < 5.7.37
mysql-server80 < 8.0.27


VuXML ID 7262f826-795e-11ec-8be6-d4c9ef517024
Discovery 2022-01-18
Entry 2022-01-19

Oracle reports:

This Critical Patch Update contains 78 new security patches for Oracle MySQL. 3 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.
The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle MySQL is 7.4


CVE Name CVE-2021-22946
CVE Name CVE-2021-3712
CVE Name CVE-2022-21245
CVE Name CVE-2022-21249
CVE Name CVE-2022-21253
CVE Name CVE-2022-21254
CVE Name CVE-2022-21256
CVE Name CVE-2022-21264
CVE Name CVE-2022-21265
CVE Name CVE-2022-21270
CVE Name CVE-2022-21278
CVE Name CVE-2022-21297
CVE Name CVE-2022-21301
CVE Name CVE-2022-21302
CVE Name CVE-2022-21303
CVE Name CVE-2022-21304
CVE Name CVE-2022-21339
CVE Name CVE-2022-21342
CVE Name CVE-2022-21344
CVE Name CVE-2022-21348
CVE Name CVE-2022-21351
CVE Name CVE-2022-21352
CVE Name CVE-2022-21358
CVE Name CVE-2022-21362
CVE Name CVE-2022-21363
CVE Name CVE-2022-21367
CVE Name CVE-2022-21368
CVE Name CVE-2022-21370
CVE Name CVE-2022-21372
CVE Name CVE-2022-21374
CVE Name CVE-2022-21378
CVE Name CVE-2022-21379