UbuntuUpdates.org

Package "mysql-8.0"

Name: mysql-8.0

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • MySQL database development files
  • MySQL database client library
  • MySQL database client (metapackage depending on the latest version)
  • MySQL database client binaries
Latest version: 8.0.36-0ubuntu0.20.04.1
Release: focal (20.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "mysql-8.0" in Focal

Repository Area Version
base main 8.0.19-0ubuntu5
base universe 8.0.19-0ubuntu5
security main 8.0.36-0ubuntu0.20.04.1
security universe 8.0.36-0ubuntu0.20.04.1
updates universe 8.0.36-0ubuntu0.20.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 8.0.33-0ubuntu0.20.04.1 2023-05-08 15:07:17 UTC

  mysql-8.0 (8.0.33-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.33 to fix security issues
    - CVE-2023-21911, CVE-2023-21919, CVE-2023-21920, CVE-2023-21929,
      CVE-2023-21933, CVE-2023-21935, CVE-2023-21940, CVE-2023-21945,
      CVE-2023-21946, CVE-2023-21947, CVE-2023-21953, CVE-2023-21955,
      CVE-2023-21962, CVE-2023-21966, CVE-2023-21972, CVE-2023-21976,
      CVE-2023-21977, CVE-2023-21980, CVE-2023-21982
    - debian/*.install: Added new files.
    - d/p/revert-router-to-8.0.31/*.patch: removed, no longer needed with
      new version.

 -- Marc Deslauriers <email address hidden> Fri, 21 Apr 2023 10:17:04 -0400
Source diff to previous version
CVE-2023-21911 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.32 and prior. Easily exp
CVE-2023-21919 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easil
CVE-2023-21920 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21929 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easil
CVE-2023-21933 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easil
CVE-2023-21935 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21940 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32
CVE-2023-21945 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21946 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21947 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32
CVE-2023-21953 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Partition). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21955 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Partition). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21962 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32
CVE-2023-21966 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.32 and prior. Easi
CVE-2023-21972 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.32 and prior. Easil
CVE-2023-21976 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21977 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.
CVE-2023-21980 Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.41 and prior an
CVE-2023-21982 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior.

Version: 8.0.32-0ubuntu0.20.04.2 2023-01-29 17:06:59 UTC

  mysql-8.0 (8.0.32-0ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY REGRESSION: Regression with PyMySQL (LP: #2003835)
    - d/p/revert-router-to-8.0.31/*.patch: Revert every patch that modified
      the router directory in version 8.0.32, except for the following:
      605df79542d, b806d2bbb2d, faabb6e7404, 1ae29236865, d03f34cd9fe.
    - debian/mysql-router-8.0.install: Removed destination_status files.

 -- Marc Deslauriers <email address hidden> Sat, 28 Jan 2023 09:44:32 -0500
Source diff to previous version

Version: 8.0.32-0buntu0.20.04.1 2023-01-24 22:07:11 UTC

  mysql-8.0 (8.0.32-0buntu0.20.04.1) focal-security; urgency=medium

  [ Lars Tangvald ]
  * Imported upstream version 8.0.32 to fix security issues
    - https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
    - CVE-2022-32221 CVE-2023-21836 CVE-2023-21868 CVE-2023-21869
    - CVE-2023-21871 CVE-2023-21875 CVE-2023-21877 CVE-2023-21863
    - CVE-2023-21867 CVE-2023-21870 CVE-2023-21873 CVE-2023-21876
    - CVE-2023-21878 CVE-2023-21879 CVE-2023-21880 CVE-2023-21881
    - CVE-2023-21883 CVE-2023-21882 CVE-2023-21887
    Upstream release notes:
    - https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html
  * Remove empty changelog file Docs/Changelog
  * debian/mysql-router-8.0.install: Added new files

  [ Marc Deslauriers ]
  * debian/patches/disable_timestamping_test.path: disable test that fails
    to build on certain archs because of the presence of sizeof in macros.

 -- Marc Deslauriers <email address hidden> Fri, 20 Jan 2023 06:54:21 -0500
Source diff to previous version
CVE-2022-32221 POST following PUT confusion
CVE-2023-21836 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.31 and prior. Easil
CVE-2023-21868 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21869 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21871 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21875 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.31
CVE-2023-21877 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21863 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21867 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21870 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21873 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21876 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21878 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21879 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21880 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exp
CVE-2023-21881 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21883 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21882 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior.
CVE-2023-21887 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versions that are affected are 8.0.31 and prior. Easil

Version: 8.0.31-0ubuntu0.20.04.2 2022-11-29 23:06:26 UTC

  mysql-8.0 (8.0.31-0ubuntu0.20.04.2) focal; urgency=medium

  * d/mysql-server-8.0.postinst: Confirm mysqld shuts down with stop_server
    after initialization to avoid overlapping use of port 3306 (LP: #1921378)

 -- Lena Voytek <email address hidden> Tue, 15 Nov 2022 13:42:17 -0700
Source diff to previous version
1921378 mysql server crashes with port 3306 already in use

Version: 8.0.31-0ubuntu0.20.04.1 2022-10-24 15:06:27 UTC

  mysql-8.0 (8.0.31-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: Update to 8.0.31 to fix security issues (LP: #1992453)
    - debian/tests/upstream: disable main.derived_limit test that fails on
      s390x.
    - Remove d/p/fix_path_mysql_keyring_encryption_test.patch: Fixed
      upstream.
    - Remove d/p/lp1971565.patch: Fixed upstream.
    - debian/mysql-testsuite-8.0.install: added new files.
    - CVE-2022-21594, CVE-2022-21599, CVE-2022-21604, CVE-2022-21608,
      CVE-2022-21611, CVE-2022-21617, CVE-2022-21625, CVE-2022-21632,
      CVE-2022-21633, CVE-2022-21637, CVE-2022-21640, CVE-2022-39400,
      CVE-2022-39408, CVE-2022-39410

 -- Marc Deslauriers <email address hidden> Wed, 19 Oct 2022 07:35:39 -0400
CVE-2022-21594 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-21599 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.30 and
CVE-2022-21604 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily expl
CVE-2022-21608 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.39 and prior a
CVE-2022-21611 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Difficult t
CVE-2022-21617 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 5.7.39 a
CVE-2022-21625 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-21632 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.30
CVE-2022-21633 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.30 and prior
CVE-2022-21637 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily expl
CVE-2022-21640 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39400 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39408 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.
CVE-2022-39410 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior.


About   -   Send Feedback to @ubuntu_updates