Oval Definition:oval:com.redhat.rhsa:def:20226590
Revision Date:2022-09-20Version:636
Title:RHSA-2022:6590: mysql security, bug fix, and enhancement update (Moderate)
Description:MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.

  • The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589)

    Security Fix(es):

  • mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479)

  • mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413)

  • mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415)

  • mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423)

  • mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444)

  • mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427)

  • mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454)

  • mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455)

  • mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457)

  • mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460)

  • mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569)

  • mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515)

  • mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539)

  • mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534)

  • mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547)

  • mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Bug Fix(es):

  • Default logrotate set to wrong log file (BZ#2122592)
    • Family:unixClass:patch
    Status:Reference(s):CVE-2022-21412
    CVE-2022-21413
    CVE-2022-21414
    CVE-2022-21415
    CVE-2022-21417
    CVE-2022-21418
    CVE-2022-21423
    CVE-2022-21425
    CVE-2022-21427
    CVE-2022-21435
    CVE-2022-21436
    CVE-2022-21437
    CVE-2022-21438
    CVE-2022-21440
    CVE-2022-21444
    CVE-2022-21451
    CVE-2022-21452
    CVE-2022-21454
    CVE-2022-21455
    CVE-2022-21457
    CVE-2022-21459
    CVE-2022-21460
    CVE-2022-21462
    CVE-2022-21478
    CVE-2022-21479
    CVE-2022-21509
    CVE-2022-21515
    CVE-2022-21517
    CVE-2022-21522
    CVE-2022-21525
    CVE-2022-21526
    CVE-2022-21527
    CVE-2022-21528
    CVE-2022-21529
    CVE-2022-21530
    CVE-2022-21531
    CVE-2022-21534
    CVE-2022-21537
    CVE-2022-21538
    CVE-2022-21539
    CVE-2022-21547
    CVE-2022-21553
    CVE-2022-21556
    CVE-2022-21569
    CVE-2022-21592
    CVE-2022-21605
    CVE-2022-21607
    CVE-2022-21635
    CVE-2022-21638
    CVE-2022-21641
    CVE-2023-21866
    CVE-2023-21872
    RHSA-2022:6590
    Platform(s):Red Hat Enterprise Linux 9
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 9 is installed
  • AND
  • mysql is earlier than 0:8.0.30-3.el9_0
  • AND mysql is signed with Red Hat redhatrelease2 key
  • mysql-common is earlier than 0:8.0.30-3.el9_0
  • AND mysql-common is signed with Red Hat redhatrelease2 key
  • mysql-devel is earlier than 0:8.0.30-3.el9_0
  • AND mysql-devel is signed with Red Hat redhatrelease2 key
  • mysql-errmsg is earlier than 0:8.0.30-3.el9_0
  • AND mysql-errmsg is signed with Red Hat redhatrelease2 key
  • mysql-libs is earlier than 0:8.0.30-3.el9_0
  • AND mysql-libs is signed with Red Hat redhatrelease2 key
  • mysql-server is earlier than 0:8.0.30-3.el9_0
  • AND mysql-server is signed with Red Hat redhatrelease2 key
  • mysql-test is earlier than 0:8.0.30-3.el9_0
  • AND mysql-test is signed with Red Hat redhatrelease2 key
    • BACK