UbuntuUpdates.org

Package "mysql-server"

Name: mysql-server

Description:

MySQL database server and system database setup
Latest version: 8.4.9-0ubuntu0.25.10.1
Release: questing (25.10)
Level: security
Repository: main
Head package: mysql-8.4
Homepage: http://dev.mysql.com/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "mysql-server"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "mysql-server" in Questing

Repository Area Version
base main 8.4.6-0ubuntu3
updates main 8.4.9-0ubuntu0.25.10.1

Changelog

Version: 8.4.9-0ubuntu0.25.10.1 2026-06-02 14:07:31 UTC

  mysql-8.4 (8.4.9-0ubuntu0.25.10.1) questing-security; urgency=medium

  * SECURITY UPDATE: Update to 8.4.9 to fix security issues
    - debian/mysql-testsuite.install: added new files.
    - CVE-2026-21998, CVE-2026-22001, CVE-2026-22002, CVE-2026-22004,
      CVE-2026-22005, CVE-2026-22009, CVE-2026-22015, CVE-2026-22017,
      CVE-2026-34270, CVE-2026-34271, CVE-2026-34276, CVE-2026-34303,
      CVE-2026-34304, CVE-2026-34308, CVE-2026-34317, CVE-2026-34318,
      CVE-2026-34319, CVE-2026-35236, CVE-2026-35237, CVE-2026-35238,
      CVE-2026-35239, CVE-2026-35240

 -- Marc Deslauriers <email address hidden> Wed, 22 Apr 2026 10:10:45 -0400
Source diff to previous version
CVE-2026-21998 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-22001 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.0-8.
CVE-2026-22002 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-22004 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 an
CVE-2026-22005 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-22009 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-22015 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.0-8.
CVE-2026-22017 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-34270 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.
CVE-2026-34271 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.
CVE-2026-34276 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.
CVE-2026-34303 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-34304 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 an
CVE-2026-34308 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.
CVE-2026-34317 Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-34318 Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-34319 Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4
CVE-2026-35236 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 an
CVE-2026-35237 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 an
CVE-2026-35238 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 an
CVE-2026-35239 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4
CVE-2026-35240 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4

Version: 8.4.8-0ubuntu0.25.10.1 2026-02-02 17:08:19 UTC

  mysql-8.4 (8.4.8-0ubuntu0.25.10.1) questing-security; urgency=medium

  * SECURITY UPDATE: Update to 8.4.8 to fix security issues
    - CVE-2026-21936, CVE-2026-21937, CVE-2026-21941, CVE-2026-21948,
      CVE-2026-21964, CVE-2026-21968

 -- Marc Deslauriers <email address hidden> Wed, 21 Jan 2026 13:12:25 -0500
Source diff to previous version
CVE-2026-21936 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 an
CVE-2026-21937 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4
CVE-2026-21941 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4
CVE-2026-21948 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4
CVE-2026-21964 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.0-8.0.44
CVE-2026-21968 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4

Version: 8.4.7-0ubuntu0.25.10.2 2025-11-19 15:07:36 UTC

  mysql-8.4 (8.4.7-0ubuntu0.25.10.2) questing-security; urgency=medium

  * SECURITY UPDATE: Update to 8.4.7 to fix security issues
    - CVE-2025-53040, CVE-2025-53042, CVE-2025-53044, CVE-2025-53045,
      CVE-2025-53053, CVE-2025-53054, CVE-2025-53062, CVE-2025-53069
  * d/rules: Skip build tests failing on amd64v3 (LP: #2130339)

 -- Marc Deslauriers <email address hidden> Fri, 24 Oct 2025 09:49:40 -0400
2130339 Some upstream build tests fail against amd64v3
CVE-2025-53040 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.43, 8.4
CVE-2025-53042 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.43, 8.4
CVE-2025-53044 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 an
CVE-2025-53045 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 an
CVE-2025-53053 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4
CVE-2025-53054 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 an
CVE-2025-53062 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 an
CVE-2025-53069 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.0-8


About   -   Send Feedback to @ubuntu_updates