UbuntuUpdates.org

Package "mysql-client-core-8.0"

Name: mysql-client-core-8.0

Description:

MySQL database core client binaries

Latest version: 8.0.36-0ubuntu0.20.04.1
Release: focal (20.04)
Level: security
Repository: main
Head package: mysql-8.0
Homepage: http://dev.mysql.com/

Links


Download "mysql-client-core-8.0"


Other versions of "mysql-client-core-8.0" in Focal

Repository Area Version
base main 8.0.19-0ubuntu5
updates main 8.0.36-0ubuntu0.20.04.1

Changelog

Version: 8.0.32-0ubuntu0.20.04.2 2023-01-29 16:07:04 UTC

  mysql-8.0 (8.0.32-0ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY REGRESSION: Regression with PyMySQL (LP: #2003835)
    - d/p/revert-router-to-8.0.31/*.patch: Revert every patch that modified
      the router directory in version 8.0.32, except for the following:
      605df79542d, b806d2bbb2d, faabb6e7404, 1ae29236865, d03f34cd9fe.
    - debian/mysql-router-8.0.install: Removed destination_status files.

 -- Marc Deslauriers <email address hidden> Sat, 28 Jan 2023 09:44:32 -0500

Source diff to previous version

Version: 8.0.32-0buntu0.20.04.1 2023-01-24 21:07:20 UTC

  mysql-8.0 (8.0.32-0buntu0.20.04.1) focal-security; urgency=medium

  [ Lars Tangvald ]
  * Imported upstream version 8.0.32 to fix security issues
    - https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
    - CVE-2022-32221 CVE-2023-21836 CVE-2023-21868 CVE-2023-21869
    - CVE-2023-21871 CVE-2023-21875 CVE-2023-21877 CVE-2023-21863
    - CVE-2023-21867 CVE-2023-21870 CVE-2023-21873 CVE-2023-21876
    - CVE-2023-21878 CVE-2023-21879 CVE-2023-21880 CVE-2023-21881
    - CVE-2023-21883 CVE-2023-21882 CVE-2023-21887
    Upstream release notes:
    - https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html
  * Remove empty changelog file Docs/Changelog
  * debian/mysql-router-8.0.install: Added new files

  [ Marc Deslauriers ]
  * debian/patches/disable_timestamping_test.path: disable test that fails
    to build on certain archs because of the presence of sizeof in macros.

 -- Marc Deslauriers <email address hidden> Fri, 20 Jan 2023 06:54:21 -0500

Source diff to previous version
CVE-2022-32221 POST following PUT confusion
CVE-2023-21836 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.31 and prior. Easil
CVE-2023-21868 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21869 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21871 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21875 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.31
CVE-2023-21877 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21863 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21867 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21870 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21873 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21876 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21878 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21879 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21880 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21881 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21883 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21882 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21887 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versions that are affected are 8.0.31 and prior. Easil

Version: 8.0.31-0ubuntu0.20.04.1 2022-10-24 14:06:22 UTC

  mysql-8.0 (8.0.31-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.31 to fix security issues (LP: #1992453)
    - debian/tests/upstream: disable main.derived_limit test that fails on
      s390x.
    - Remove d/p/fix_path_mysql_keyring_encryption_test.patch: Fixed
      upstream.
    - Remove d/p/lp1971565.patch: Fixed upstream.
    - debian/mysql-testsuite-8.0.install: added new files.
    - CVE-2022-21594, CVE-2022-21599, CVE-2022-21604, CVE-2022-21608,
      CVE-2022-21611, CVE-2022-21617, CVE-2022-21625, CVE-2022-21632,
      CVE-2022-21633, CVE-2022-21637, CVE-2022-21640, CVE-2022-39400,
      CVE-2022-39408, CVE-2022-39410

 -- Marc Deslauriers <email address hidden> Wed, 19 Oct 2022 07:35:39 -0400

Source diff to previous version
CVE-2022-21594 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-21599 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.30 and
CVE-2022-21604 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily expl
CVE-2022-21608 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.39 and prior a
CVE-2022-21611 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Difficult t
CVE-2022-21617 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 5.7.39 a
CVE-2022-21625 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-21632 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.30
CVE-2022-21633 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.30 and prior
CVE-2022-21637 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily expl
CVE-2022-21640 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39400 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39408 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39410 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.

Version: 8.0.30-0ubuntu0.20.04.2 2022-07-28 15:07:41 UTC

  mysql-8.0 (8.0.30-0ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.30 to fix security issues
    - debian/patches/fix_path_mysql_keyring_encryption_test.patch:
      refreshed.
    - debian/mysql-testsuite-8.0.install: added conflicting_variables.so.
    - debian/rules: use bundled zlib as it is required now.
    - CVE-2022-21509, CVE-2022-21515, CVE-2022-21517, CVE-2022-21522,
      CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528,
      CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21534,
      CVE-2022-21537, CVE-2022-21538, CVE-2022-21539, CVE-2022-21547,
      CVE-2022-21553, CVE-2022-21569

 -- Marc Deslauriers <email address hidden> Tue, 26 Jul 2022 12:14:25 -0400

Source diff to previous version
CVE-2022-21509 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21515 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 5.7.38 and prior and
CVE-2022-21517 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Easily expl
CVE-2022-21522 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.29 and
CVE-2022-21525 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21526 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21527 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21528 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21529 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21530 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21531 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21534 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.29 and
CVE-2022-21537 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Easily expl
CVE-2022-21538 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.29
CVE-2022-21539 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Difficult t
CVE-2022-21547 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Federated). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21553 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.
CVE-2022-21569 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior.

Version: 8.0.29-0ubuntu0.20.04.3 2022-05-05 12:06:16 UTC

  mysql-8.0 (8.0.29-0ubuntu0.20.04.3) focal-security; urgency=medium

  * SECURITY REGRESSION: 8.0.29 breaks existing charm configurations
    (LP: #1971565)
    - debian/patches/lp1971565.patch: add "name" to the supported global
      options list so existing configurations keep working.

 -- Marc Deslauriers <email address hidden> Wed, 04 May 2022 08:36:15 -0400

1971565 charm no longer works with latest mysql-router version



About   -   Send Feedback to @ubuntu_updates