Home / mailings [USN-2291-1] MySQL vulnerabilities
Posted on 17 July 2014
Ubuntu Security==========================
==========================
========================
Ubuntu Security Notice USN-2291-1
July 17, 2014
mysql-5.5 vulnerabilities
==========================
==========================
========================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
- mysql-5.5: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update include=
s
a new upstream MySQL version to fix these issues. MySQL has been updated =
to
5.5.38.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-38.html
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html=
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.38-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.38-0ubuntu0.12.04.1
In general, a standard system update will make all the necessary changes.=
References:
http://www.ubuntu.com/usn/usn-2291-1
CVE-2014-2494, CVE-2014-4207, CVE-2014-4258, CVE-2014-4260
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.38-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.38-0ubuntu0.12.04.1
