git: fdcd341bf74c - main - security/vuxml: Add 2022-04 MySQL vulnerabilities
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Sat, 16 Apr 2022 11:21:57 UTC
The branch main has been updated by brnrd:
URL: https://cgit.FreeBSD.org/ports/commit/?id=fdcd341bf74cb538bed2583a67ecb3d9ebfe2fe7
commit fdcd341bf74cb538bed2583a67ecb3d9ebfe2fe7
Author: Bernard Spil <brnrd@FreeBSD.org>
AuthorDate: 2022-04-16 11:21:53 +0000
Commit: Bernard Spil <brnrd@FreeBSD.org>
CommitDate: 2022-04-16 11:21:53 +0000
security/vuxml: Add 2022-04 MySQL vulnerabilities
---
security/vuxml/vuln-2022.xml | 36 ++++++++++++++++++++++++++++++++++++
1 file changed, 36 insertions(+)
diff --git a/security/vuxml/vuln-2022.xml b/security/vuxml/vuln-2022.xml
index b9cef4921b3a..76651abe07b3 100644
--- a/security/vuxml/vuln-2022.xml
+++ b/security/vuxml/vuln-2022.xml
@@ -1,3 +1,39 @@
+ <vuln vid="add683be-bd76-11ec-a06f-d4c9ef517024">
+ <topic>MySQL -- Multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>mysql57-server</name>
+ <range><lt>5.7.38</lt></range>
+ </package>
+ <package>
+ <name>mysql80-client</name>
+ <range><lt>8.0.29</lt></range>
+ </package>
+ <package>
+ <name>mysql80-server</name>
+ <range><lt>8.0.29</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Oracle reports:</p>
+ <blockquote cite="https://www.oracle.com/security-alerts/cpuapr2022.html">
+ <p>The 2022 April Critical Patch Update contains 43 new security
+ patches for Oracle MySQL. 11 of these vulnerabilities may be
+ remotely exploitable without authentication, i.e., may be
+ exploited over a network without requiring user credentials.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>https://www.oracle.com/security-alerts/cpuapr2022.html</url>
+ </references>
+ <dates>
+ <discovery>2022-04-16</discovery>
+ <entry>2022-04-16</entry>
+ </dates>
+ </vuln>
+
<vuln vid="a25ea27b-bced-11ec-87b5-3065ec8fd3ec">
<topic>chromium -- multiple vulnerabilities</topic>
<affects>