Home / mailings [USN-1807-2] MySQL vulnerabilities
Posted on 26 April 2013
Ubuntu Security==========================
==========================
========================
Ubuntu Security Notice USN-1807-2
April 25, 2013
mysql-5.5 vulnerabilities
==========================
==========================
========================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 13.04
Summary:
Several security issues were fixed in MySQL.
Software Description:
- mysql-5.5: MySQL database
Details:
USN-1807-1 fixed vulnerabilities in MySQL. This update provides
MySQL 5.5.31 for Ubuntu 13.04.
Original advisory details:
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
=20
MySQL has been updated to 5.1.69 in Ubuntu 10.04 LTS and Ubuntu 11.10.
Ubuntu 12.04 LTS and Ubuntu 12.10 have been updated to MySQL 5.5.31.
=20
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
=20
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.1/en/news-5-1-69.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-31.html
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 13.04:
mysql-server-5.5 5.5.31-0ubuntu0.13.04.1
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-1807-2
http://www.ubuntu.com/usn/usn-1807-1
CVE-2012-0553, CVE-2013-1492, CVE-2013-1502, CVE-2013-1506,
CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523,
CVE-2013-1526, CVE-2013-1532, CVE-2013-1544, CVE-2013-1552,
CVE-2013-1555, CVE-2013-1623, CVE-2013-2375, CVE-2013-2376,
CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.31-0ubuntu0.13.04.1
