UbuntuUpdates.org

Package "mysql-8.0"

Name: mysql-8.0

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • MySQL database development files
  • MySQL database client library
  • MySQL database client (metapackage depending on the latest version)
  • MySQL database client binaries

Latest version: 8.0.22-0ubuntu0.20.04.3
Release: focal (20.04)
Level: updates
Repository: main

Links



Other versions of "mysql-8.0" in Focal

Repository Area Version
base main 8.0.19-0ubuntu5
base universe 8.0.19-0ubuntu5
security main 8.0.22-0ubuntu0.20.04.3
security universe 8.0.22-0ubuntu0.20.04.3
updates universe 8.0.22-0ubuntu0.20.04.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 8.0.22-0ubuntu0.20.04.3 2020-11-30 16:06:25 UTC

  mysql-8.0 (8.0.22-0ubuntu0.20.04.3) focal-security; urgency=medium

  * SECURITY UPDATE: restrict open mysqlx port (LP: #1857584)
    - debian/additions/mysql.conf.d/mysqld.cnf: bind mysqlx port to
      127.0.0.1.
  * WARNING: This change may impact certain environments where the mysqlx
    port needs to be accessed from other hosts. A configuration change may
    be required.

 -- Marc Deslauriers <email address hidden> Thu, 26 Nov 2020 07:03:42 -0500

Source diff to previous version
1857584 MySQL X protocol port 33060 listening on network by default

Version: 8.0.22-0ubuntu0.20.04.2 2020-10-27 13:07:42 UTC

  mysql-8.0 (8.0.22-0ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.22 to fix security issues
    - CVE-2019-14775, CVE-2020-14672, CVE-2020-14765, CVE-2020-14769,
      CVE-2020-14771, CVE-2020-14773, CVE-2020-14775, CVE-2020-14776,
      CVE-2020-14777, CVE-2020-14785, CVE-2020-14786, CVE-2020-14789,
      CVE-2020-14790, CVE-2020-14791, CVE-2020-14793, CVE-2020-14794,
      CVE-2020-14800, CVE-2020-14804, CVE-2020-14809, CVE-2020-14812,
      CVE-2020-14814, CVE-2020-14821, CVE-2020-14827, CVE-2020-14828,
      CVE-2020-14829, CVE-2020-14830, CVE-2020-14836, CVE-2020-14837,
      CVE-2020-14838, CVE-2020-14839, CVE-2020-14844, CVE-2020-14845,
      CVE-2020-14846, CVE-2020-14848, CVE-2020-14852, CVE-2020-14853,
      CVE-2020-14860, CVE-2020-14861, CVE-2020-14866, CVE-2020-14867,
      CVE-2020-14868, CVE-2020-14869, CVE-2020-14870, CVE-2020-14873,
      CVE-2020-14878, CVE-2020-14888, CVE-2020-14891, CVE-2020-14893
  * Removed patches included in new version:
    - debian/patches/charset_file_crash.patch
  * debian/rules, debian/tests/upstream: re-enable tests that had expired
    certificates, disable unstable test main.mysql_client_test.
  * debian/mysql-router.install: adjust path to sample_mysqlrouter.conf.
  * debian/mysql-router.install, debian/not-installed: added new files.
  * debian/libmysqlclient21.symbols: added new symbol.

 -- Marc Deslauriers <email address hidden> Thu, 22 Oct 2020 09:19:05 -0400

Source diff to previous version
CVE-2019-14775 RESERVED
CVE-2020-14672 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and
CVE-2020-14765 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.6.49 and prior, 5.7.31
CVE-2020-14769 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior,
CVE-2020-14771 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 a
CVE-2020-14773 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14775 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 a
CVE-2020-14776 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 a
CVE-2020-14777 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14785 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14786 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily
CVE-2020-14789 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.7.31 and prior and 8.0
CVE-2020-14790 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.31 and prior and 8.0.
CVE-2020-14791 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Difficult t
CVE-2020-14793 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior,
CVE-2020-14794 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14800 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.21
CVE-2020-14804 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 8.0.21 and prior. Easily
CVE-2020-14809 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14812 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 5.6.49 and prior, 5.
CVE-2020-14814 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily
CVE-2020-14821 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily expl
CVE-2020-14827 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 a
CVE-2020-14828 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily
CVE-2020-14829 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily expl
CVE-2020-14830 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14836 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14837 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14838 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.21
CVE-2020-14839 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14844 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily
CVE-2020-14845 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14846 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14848 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily expl
CVE-2020-14852 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). Supported versions that are affected are 8.0.21 and prior. E
CVE-2020-14853 Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: NDBCluster Plugin). Supported versions that are affected are 8.0.21 a
CVE-2020-14860 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.21 and p
CVE-2020-14861 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14866 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14867 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 5.6.49 and prior, 5.7.31
CVE-2020-14868 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14869 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 a
CVE-2020-14870 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin). Supported versions that are affected are 8.0.21 and prior. E
CVE-2020-14873 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.21 and prior. Di
CVE-2020-14878 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 8.0.21 a
CVE-2020-14888 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14891 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.
CVE-2020-14893 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior.

Version: 8.0.21-0ubuntu0.20.04.4 2020-08-05 14:07:14 UTC

  mysql-8.0 (8.0.21-0ubuntu0.20.04.4) focal-security; urgency=medium

  * SECURITY REGRESSION: libmysqlclient loading issues (LP: #1889851)
    - debian/patches/revert_faster_tls_model.patch: revert an upstream
      commit that switches the tls-model to initial-exec. This is causing
      "cannot allocate memory in static TLS block" errors when attempting
      to load the library in certain scenarios.

 -- Marc Deslauriers <email address hidden> Tue, 04 Aug 2020 07:39:21 -0400

Source diff to previous version
1889851 Driver QMysql can't be loaded

Version: 8.0.21-0ubuntu0.20.04.3 2020-07-28 18:07:15 UTC

  mysql-8.0 (8.0.21-0ubuntu0.20.04.3) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.21 to fix security issues
    - CVE-2020-14539, CVE-2020-14540, CVE-2020-14547, CVE-2020-14550,
      CVE-2020-14553, CVE-2020-14559, CVE-2020-14568, CVE-2020-14575,
      CVE-2020-14576, CVE-2020-14586, CVE-2020-14591, CVE-2020-14597,
      CVE-2020-14619, CVE-2020-14620, CVE-2020-14623, CVE-2020-14624,
      CVE-2020-14631, CVE-2020-14632, CVE-2020-14633, CVE-2020-14634,
      CVE-2020-14641, CVE-2020-14643, CVE-2020-14651, CVE-2020-14654,
      CVE-2020-14656, CVE-2020-14663, CVE-2020-14678, CVE-2020-14680,
      CVE-2020-14697, CVE-2020-14702
  * debian/rules: disable some tests that have expired certificates until
    new ones can be obtained from the upstream repo.
  * debian/tests/upstream: disable some tests that have expired
    certificates until new ones can be obtained from the upstream repo.
  * debian/tests/upstream: disable new test that can't locate
    mysqltest_safe_process binary.
  * debian/mysql-router.install, debian/mysql-server-core-8.0.install,
    debian/mysql-testsuite-8.0.install: use wildcard for libprotobuf-lite
    library version.
  * debian/mysql-router.install: added router_protobuf.so.
  * debian/mysql-testsuite-8.0.install: added
    component_test_component_deinit.so.
  * debian/patches/charset_file_crash.patch: don't crash on malformed
    charset files in mysys/charset.cc (LP: #1884809)
  * Fix FTBFS on RISC-V.
    - d/p/use-largest-lock-free-type-selector-on-riscv.patch: Force
      the use of Largest_lock_free_type_selector instead of
      Lock_free_type_selector when compiling for RISC-V, since the
      latter will cause a compilation failure due to RISC-V's
      inability to provide the always-lock-free property for some
      specific types.

 -- Marc Deslauriers <email address hidden> Mon, 27 Jul 2020 11:58:55 -0400

Source diff to previous version
1884809 libmysqlclient21 crashes if certain collation definitions are found in MySQL's sharedir
CVE-2020-14539 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior,
CVE-2020-14540 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0
CVE-2020-14547 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior a
CVE-2020-14550 Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and p
CVE-2020-14553 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.30 and pr
CVE-2020-14559 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 5.6.48 an
CVE-2020-14568 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily expl
CVE-2020-14575 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily
CVE-2020-14576 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 5.7.30 and prior and 8.0
CVE-2020-14586 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20
CVE-2020-14591 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plug-in). Supported versions that are affected are 8.0.20 and pri
CVE-2020-14597 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior.
CVE-2020-14619 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.20 and prior. Eas
CVE-2020-14620 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily
CVE-2020-14623 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily expl
CVE-2020-14624 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.20 and prior. Easil
CVE-2020-14631 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Audit). Supported versions that are affected are 8.0.20 and p
CVE-2020-14632 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.20 and prior. Ea
CVE-2020-14633 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily expl
CVE-2020-14634 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily expl
CVE-2020-14641 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and p
CVE-2020-14643 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and p
CVE-2020-14651 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and p
CVE-2020-14654 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior.
CVE-2020-14656 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 8.0.20 and prior. Ea
CVE-2020-14663 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20
CVE-2020-14678 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20
CVE-2020-14680 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior.
CVE-2020-14697 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20
CVE-2020-14702 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20

Version: 8.0.20-0ubuntu0.20.04.1 2020-05-04 14:07:33 UTC

  mysql-8.0 (8.0.20-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.20 to fix security issues
    - CVE-2020-2759, CVE-2020-2760, CVE-2020-2762, CVE-2020-2763,
      CVE-2020-2765, CVE-2020-2780, CVE-2020-2804, CVE-2020-2812,
      CVE-2020-2892, CVE-2020-2893, CVE-2020-2895, CVE-2020-2896,
      CVE-2020-2897, CVE-2020-2898, CVE-2020-2901, CVE-2020-2903,
      CVE-2020-2904, CVE-2020-2921, CVE-2020-2923, CVE-2020-2924,
      CVE-2020-2925, CVE-2020-2926, CVE-2020-2928, CVE-2020-2930
  * debian/patches/year2020.patch: Dropped, no longer needed
  * debian/mysql-router.install: updated paths for library locations.

 -- Marc Deslauriers <email address hidden> Mon, 27 Apr 2020 12:48:11 -0400

CVE-2020-2759 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.19 and prior
CVE-2020-2760 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.29 and prior and 8.0.19 a
CVE-2020-2762 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily expl
CVE-2020-2763 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.6.47 and prior
CVE-2020-2765 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.29 and prior a
CVE-2020-2780 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.6.47 and prior, 5.7.29
CVE-2020-2804 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Memcached). Supported versions that are affected are 5.6.47 and prior,
CVE-2020-2812 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and
CVE-2020-2892 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2893 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily expl
CVE-2020-2895 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily expl
CVE-2020-2896 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.19 an
CVE-2020-2897 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2898 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). The supported version that is affected is 8.0.19. Easily exp
CVE-2020-2901 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2903 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 8.0.19 a
CVE-2020-2904 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2921 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0
CVE-2020-2923 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2924 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2925 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.19 and prior. Easily
CVE-2020-2926 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.19
CVE-2020-2928 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior.
CVE-2020-2930 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.19 and prior. Dif



About   -   Send Feedback to @ubuntu_updates