Ubuntu
mysql-5.7 package

MySQL Server Multiple Vulnerabilities

Bug #1947994 reported by it0001 on 2021-10-21

258

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	mysql-5.7 (Ubuntu)	Fix Released	Undecided	Unassigned

Bug Description

Software

MySQL 5.x, MySQL 8.x

CVE Numbers

<https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35645&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002108455%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=huIz%2Fn6wJdf9xfwD4YFw%2FBSg97GYPle1k9fDGQcP%2BZA%3D&reserved=0> CVE‑2021‑35645, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35647&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002118409%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4hxKsmRvDZM6ECH%2BKIK%2FRwoUqEPg0mXc6DS9XCcmgZA%3D&reserved=0> CVE‑2021‑35647, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22923&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002118409%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=PgNsXTQq%2BEty8p%2FWUz6xQyIIlY0JfVbGyvk%2BJMCllMY%3D&reserved=0> CVE‑2021‑22923, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22946&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002118409%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4is6XN9eBv9rAWGRcMjqyLheD0P6yRxD6GW379wYPH0%3D&reserved=0> CVE‑2021‑22946, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35626&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002128363%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Umz4SnPwwpww28aOXmq1AwRAzKynsaLzVEPAi9vJ474%3D&reserved=0> CVE‑2021‑35626, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-2478&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002128363%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=RN131DEmY4YueZurQdfOHqGKzlOcNu69kbWyNuFL1JM%3D&reserved=0> CVE‑2021‑2478, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35607&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002138318%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=19eHoC4rE430L9aAFNzYlBVyQee2W9U%2BcD9sb%2BRivGE%3D&reserved=0> CVE‑2021‑35607, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35636&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002138318%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=D5GhvIDVm7hGzv%2F1XxsAdiu7aHxnr3w8h2yotG8ocPM%3D&reserved=0> CVE‑2021‑35636, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35637&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002138318%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=SNafctPqn55P7438cWXZwhO6tHA8H21sDc%2Buj1f353Q%3D&reserved=0> CVE‑2021‑35637, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35639&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002148277%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=ULljaDxEnZ2iT9cMjb7gPhtwicxpndKrD2lKI%2FHkofY%3D&reserved=0> CVE‑2021‑35639, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-3712&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002148277%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=J2yFwDloVa4MxXeYf0da0ptPwLCf1p8FZCjkZVkPSn0%3D&reserved=0> CVE‑2021‑3712, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35591&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002148277%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=6pk%2FKolWiluHLpN83OKgeHHWbmaYjj9roWPRZZ1iz%2B4%3D&reserved=0> CVE‑2021‑35591, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35630&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002158235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=YHEH3mXnpgxwn%2Fygqn8j24L16TGwr0NTNAhHgTjQq6Q%3D&reserved=0> CVE‑2021‑35630, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35634&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002158235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=68Olujt8SuDrmn92r9X31WFHLM%2FVe8d6w0PGntVu7uE%3D&reserved=0> CVE‑2021‑35634, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35575&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002168188%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=cVcI1Sv%2FCcu74SMPy6MKg9pjArfFEMKC1Ce3k6fqboM%3D&reserved=0> CVE‑2021‑35575, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35583&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002168188%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=TwBjsaqF2hVjBWbJ%2BO7e2ORi8Ir4jbUvAMCvHs6NhwY%3D&reserved=0> CVE‑2021‑35583, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35546&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002168188%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=vmTRoD52DeOU4BFJyQzeK0BFnH6jTJPbBhannV8KbQE%3D&reserved=0> CVE‑2021‑35546, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35610&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002178140%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=yccqEZU2oZ6WL7JHHvafKs9qyo3NgRix1Hm6sA484Co%3D&reserved=0> CVE‑2021‑35610, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35622&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002178140%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=iZgfWn%2B1TQhqp1hjI7APadjVFf%2BVkhr7W5Djq7YAra4%3D&reserved=0> CVE‑2021‑35622, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35577&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002178140%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=eFTHvkVn3vMU9o%2F2zfI1Grgvy%2BkK0%2BjHvBfg7dGqgXI%3D&reserved=0> CVE‑2021‑35577, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35644&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002188114%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=O455ZbtdjitSOfiNFMu0agp%2B%2FGNR6tzNydzLfUgQg2s%3D&reserved=0> CVE‑2021‑35644, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35625&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002188114%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=WaHhIw%2FpK2tvYfBu0RGlkJhnnL69%2FcFo%2FMKZio10kbU%3D&reserved=0> CVE‑2021‑35625, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35633&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002198057%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=U5cHeZwyqIdd7u4VZ10QceWSC%2FFZ46fY64ZsgSpj2Ek%3D&reserved=0> CVE‑2021‑35633, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-3711&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002198057%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=bCr9Hm4NstIbrmZYrWoCebb806z9AerdT3iXaD5%2FeaI%3D&reserved=0> CVE‑2021‑3711, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35623&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002198057%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=2bDgynBDP7qbo7c6pJGJsz%2BUgQ6rNRa1R%2BDGecjNu0c%3D&reserved=0> CVE‑2021‑35623, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35643&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002208009%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=BDOcm18bL7EVj8juv%2BpLoNJuN51GQiZmb%2B8j%2BsC7KGA%3D&reserved=0> CVE‑2021‑35643, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22924&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002208009%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=foCJ5BXpkW3A%2FmByb%2FJ9QANXfzli6PZn98Gga9MxY4g%3D&reserved=0> CVE‑2021‑22924, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-2479&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002208009%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4lghn1DhbsZ4czDmfq4G8bJU17bc%2FGjz3KaUnWJc0S8%3D&reserved=0> CVE‑2021‑2479, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22925&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002217977%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=itpSBemSTCObReiCxQqfCwM2eQiEklclJ8d1d%2B49Ul0%3D&reserved=0> CVE‑2021‑22925, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35646&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002217977%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=b%2FwBgSraFFPxxsZLdwqHakTzvZXEn3dEjllERZtiJms%3D&reserved=0> CVE‑2021‑35646, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-2481&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002217977%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=lyySQA3PbaPsN0JkCjXGZsWzv8ydR9tC0Gg23NRtYgc%3D&reserved=0> CVE‑2021‑2481, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35596&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002227932%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=CAqw5Fr27WJZ1OEkyickTTcJpTocH%2FdrHqyWFfQ1LLc%3D&reserved=0> CVE‑2021‑35596, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35608&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002227932%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=IqA9KRYPS4OXKTP1X%2F8AsUIzbaSuVdimdbwRGhu1974%3D&reserved=0> CVE‑2021‑35608, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35627&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002237891%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=LV%2B99Jk0bp9Aghjc0O8IUrXq8mzob7tNRv%2FcmtjxQdc%3D&reserved=0> CVE‑2021‑35627, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35648&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002237891%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4%2FEet4NmdZr6d513I7WG4Vd8hgQnTNJijmavp0%2FFRFM%3D&reserved=0> CVE‑2021‑35648, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35641&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002237891%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=URx%2FlmKlPmILV5rka2ImHARSv17XHtsi8abatQ9sZeI%3D&reserved=0> CVE‑2021‑35641, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35642&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002247843%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4XF9G8i67Ldi4Gxq8oxOqT7tlN3jfi2TH3jrQtooYII%3D&reserved=0> CVE‑2021‑35642, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22945&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002247843%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=04toB9yLsV7Snm9s6gsWcl130iMH%2FxPpOfhbZgkGjWU%3D&reserved=0> CVE‑2021‑22945, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35537&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002247843%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=QCMV6%2BPioL9G1FuGDQtvOcw276BHaQUVjwgQ6%2FZqZzg%3D&reserved=0> CVE‑2021‑35537, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35638&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002257800%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=1GFQKrDwfO1%2FVpexsomPf2QiEbPdFvVoauqz2UjqRpI%3D&reserved=0> CVE‑2021‑35638, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35635&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002257800%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=VJEr%2BMvaDhFmDY9DmcJmJim%2FcMR%2FvR6cq71C7xqRS9E%3D&reserved=0> CVE‑2021‑35635, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35640&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002267750%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Z7DTZpUTmrzaFv4ZOGh2I%2BHvpZYeruV1dQZik9%2FvftM%3D&reserved=0> CVE‑2021‑35640, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-22947&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002267750%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=6TP9iVWW1LItal1EhFPe0nYy28ygKuXFdUCK9k%2BH12o%3D&reserved=0> CVE‑2021‑22947, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35624&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002267750%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=63zRZHeESOCO83XFsS%2B45mJCPwiBZzj8acJ9aem63A4%3D&reserved=0> CVE‑2021‑35624, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35602&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002277703%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=pNJW53tGu17WCxyhxf7EiB6CKnuNBOZJlK26575loNM%3D&reserved=0> CVE‑2021‑35602, <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35629&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002277703%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=1OW4isXSqAFGyO0OcvBBTTqRIg7t6rKfS0HvXd0VR5w%3D&reserved=0> CVE‑2021‑35629, CVE‑2021‑36222 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-36222&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002277703%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=R0vcsX%2FHmhT33g3AexLGiNZazWDwknLDuXkuJCzYT30%3D&reserved=0> , CVE‑2021‑35628 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35628&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002287672%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=JAoPnyq2hgpH%2B2Nl%2FL9lq%2BSHTjuO0JSe3EyzED6xz8w%3D&reserved=0> , CVE‑2021‑35631 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35631&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002287672%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=OFczbQbQef7wNgDOUooIeTkLqzP%2BdkhW%2F8%2F8%2BLiYaHY%3D&reserved=0> , CVE‑2021‑35604 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35604&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002287672%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=ttAZ051w8haywUDaB68xpm50O9Rf0AZv4MRVnHSyH2g%3D&reserved=0> , CVE‑2021‑35632 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35632&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002297624%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=CUroyB4d5rojx32yPx14ofSmQRpo9%2B7wL5Vln5C55%2Fw%3D&reserved=0> , CVE‑2021‑35612 <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-35612&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002297624%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=%2BrmIy0RClJrJS873kr6ILGN8Bh6mrGfHJ7cp%2FWi3xPY%3D&reserved=0>

Description

Multiple vulnerabilities have been reported in MySQL Server, which can be exploited by malicious, local users to cause a DoS (Denial of Service), by malicious users to disclose sensitive information, manipulate certain data, and cause a DoS, and by malicious people to conduct spoofing attacks, disclose sensitive information, cause a DoS, and compromise a vulnerable system.

Affected Software

The following software is affected by the described vulnerability. Please check the vendor links below to see if exactly your version is affected.

MySQL 5.x
MySQL 8.x
Please note: If the affected software is not installed on your device / client / server or if the software is CI‑managed, no further action is required by you.

Solution

Apply update.
https://support.oracle.com/rs?type=doc&id=2809354.1

References

1. http://www.oracle.com/security-alerts/cpuoct2021verbose.html <https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.oracle.com%2Fsecurity-alerts%2Fcpuoct2021verbose.html&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002297624%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=vRRGR3qKiGTQCb%2BCl3eJieLcT0J1WR4UsrQdcVDmukI%3D&reserved=0>
2. https://www.oracle.com/security-alerts/cpuoct2021.html#AppendixMSQL <https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.oracle.com%2Fsecurity-alerts%2Fcpuoct2021.html%23AppendixMSQL&data=04%7C01%7Coh88si%40bosch.mail.onmicrosoft.com%7C92ddf2ceb91546baa36808d993890727%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637703039002307589%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=AzHLFbdApefzcBrlgaD4l24GjzSG9uJjqjPjj05Iej8%3D&reserved=0>

Seth Arnold (seth-arnold) on 2021-10-21

information type:

Private Security → Public Security

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2021-10-25:

#1

https://ubuntu.com/security/notices/USN-5123-1

Changed in mysql-5.7 (Ubuntu):
status:	New → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.