Home / mailings [USN-2480-1] MySQL vulnerabilities
Posted on 22 January 2015
Ubuntu Security==========================
==========================
========================
Ubuntu Security Notice USN-2480-1
January 22, 2015
mysql-5.5 vulnerabilities
==========================
==========================
========================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary:
Several security issues were fixed in MySQL.
Software Description:
- mysql-5.5: MySQL database
Details:
Multiple security issues were discovered in MySQL and this update include=
s
a new upstream MySQL version to fix these issues. MySQL has been updated =
to
5.5.41.
In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-41.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html=
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.10:
mysql-server-5.5 5.5.41-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:
mysql-server-5.5 5.5.41-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
mysql-server-5.5 5.5.41-0ubuntu0.12.04.1
In general, a standard system update will make all the necessary changes.=
References:
http://www.ubuntu.com/usn/usn-2480-1
CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382,
CVE-2015-0411, CVE-2015-0432
Package Information:
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.41-0ubuntu0.14.10.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.41-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/mysql-5.5/5.5.41-0ubuntu0.12.04.1