[security-announce] openSUSE-SU-2017:0479-1: important: Security update for mysql-community-server

[news 28]

openSUSE Security Update: Security update for mysql-community-server

______________________________________________________________________________

 

Announcement ID: openSUSE-SU-2017:0479-1

Rating: important

References: #1020872 #1020873 #1020875 #1020876 #1020877

#1020878 #1020882 #1020884 #1020885 #1020890

#1020893 #1020894 #1020896

Cross-References: CVE-2016-8318 CVE-2016-8327 CVE-2017-3238

CVE-2017-3244 CVE-2017-3257 CVE-2017-3258

CVE-2017-3265 CVE-2017-3273 CVE-2017-3291

CVE-2017-3312 CVE-2017-3313 CVE-2017-3317

CVE-2017-3318

Affected Products:

openSUSE Leap 42.1

______________________________________________________________________________

 

An update that fixes 13 vulnerabilities is now available.

 

Description:

 

 

mysql-community-server was updated to version 5.6.35 to fix bugs and

security issues:

 

* Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-35.html

* Fixed CVEs: CVE-2016-8318 [boo#1020872], CVE-2017-3312 [boo#1020873],

CVE-2017-3258 [boo#1020875], CVE-2017-3273 [boo#1020876], CVE-2017-3244

[boo#1020877], CVE-2017-3257 [boo#1020878], CVE-2017-3238 [boo#1020882],

CVE-2017-3291 [boo#1020884], CVE-2017-3265 [boo#1020885], CVE-2017-3313

[boo#1020890], CVE-2016-8327 [boo#1020893], CVE-2017-3317 [boo#1020894],

CVE-2017-3318 [boo#1020896]

 

 

Patch Instructions:

 

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

 

- openSUSE Leap 42.1:

 

zypper in -t patch openSUSE-2017-258=1

 

To bring your system up-to-date, use "zypper patch".

 

 

Package List:

 

- openSUSE Leap 42.1 (i586 x86_64):

 

libmysql56client18-5.6.35-22.1

libmysql56client18-debuginfo-5.6.35-22.1

libmysql56client_r18-5.6.35-22.1

mysql-community-server-5.6.35-22.1

mysql-community-server-bench-5.6.35-22.1

mysql-community-server-bench-debuginfo-5.6.35-22.1

mysql-community-server-client-5.6.35-22.1

mysql-community-server-client-debuginfo-5.6.35-22.1

mysql-community-server-debuginfo-5.6.35-22.1

mysql-community-server-debugsource-5.6.35-22.1

mysql-community-server-errormessages-5.6.35-22.1

mysql-community-server-test-5.6.35-22.1

mysql-community-server-test-debuginfo-5.6.35-22.1

mysql-community-server-tools-5.6.35-22.1

mysql-community-server-tools-debuginfo-5.6.35-22.1

 

- openSUSE Leap 42.1 (x86_64):

 

libmysql56client18-32bit-5.6.35-22.1

libmysql56client18-debuginfo-32bit-5.6.35-22.1

libmysql56client_r18-32bit-5.6.35-22.1

 

 

References:

 

https://www.suse.com/security/cve/CVE-2016-8318.html

https://www.suse.com/security/cve/CVE-2016-8327.html

https://www.suse.com/security/cve/CVE-2017-3238.html

https://www.suse.com/security/cve/CVE-2017-3244.html

https://www.suse.com/security/cve/CVE-2017-3257.html

https://www.suse.com/security/cve/CVE-2017-3258.html

https://www.suse.com/security/cve/CVE-2017-3265.html

https://www.suse.com/security/cve/CVE-2017-3273.html

https://www.suse.com/security/cve/CVE-2017-3291.html

https://www.suse.com/security/cve/CVE-2017-3312.html

https://www.suse.com/security/cve/CVE-2017-3313.html

https://www.suse.com/security/cve/CVE-2017-3317.html

https://www.suse.com/security/cve/CVE-2017-3318.html

https://bugzilla.suse.com/1020872

https://bugzilla.suse.com/1020873

https://bugzilla.suse.com/1020875

https://bugzilla.suse.com/1020876

https://bugzilla.suse.com/1020877

https://bugzilla.suse.com/1020878

https://bugzilla.suse.com/1020882

https://bugzilla.suse.com/1020884

https://bugzilla.suse.com/1020885

https://bugzilla.suse.com/1020890

https://bugzilla.suse.com/1020893

https://bugzilla.suse.com/1020894

https://bugzilla.suse.com/1020896

 

--

To unsubscribe, e-mail: opensuse-security-announce+unsubscribe ( -at -) opensuse.org

For additional commands, e-mail: opensuse-security-announce+help ( -at -) opensuse.org