RHSA-2020:3755
Vulnerability from csaf_redhat
Published
2020-09-15 16:18
Modified
2025-10-10 02:11
Summary
Red Hat Security Advisory: mysql:8.0 security update
Notes
Topic
An update for the mysql:8.0 module is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.
The following packages have been upgraded to a later upstream version: mysql (8.0.21).
Security Fix(es):
* mysql: Server: Security: Privileges multiple unspecified vulnerabilities (CVE-2020-14663, CVE-2020-14678, CVE-2020-14697, CVE-2020-2761, CVE-2020-2774, CVE-2020-2779, CVE-2020-2853, CVE-2020-14586, CVE-2020-14702)
* mysql: Server: Security: Encryption multiple unspecified vulnerabilities (CVE-2019-2914, CVE-2019-2957)
* mysql: InnoDB multiple unspecified vulnerabilities (CVE-2019-2938, CVE-2019-2963, CVE-2019-2968, CVE-2019-3018, CVE-2020-2577, CVE-2020-2589, CVE-2020-2760, CVE-2020-2762, CVE-2020-2814, CVE-2020-2893, CVE-2020-2895, CVE-2020-14568, CVE-2020-14623, CVE-2020-14633, CVE-2020-14634)
* mysql: Server: PS multiple unspecified vulnerabilities (CVE-2019-2946, CVE-2020-2925)
* mysql: Server: Replication multiple unspecified vulnerabilities (CVE-2019-2960, CVE-2020-2759, CVE-2020-2763, CVE-2020-14567)
* mysql: Server: Optimizer multiple unspecified vulnerabilities (CVE-2019-2966, CVE-2019-2967, CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2998, CVE-2020-2579, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2765, CVE-2020-2892, CVE-2020-2897, CVE-2020-2901, CVE-2020-2904, CVE-2020-2923, CVE-2020-2924, CVE-2020-2928, CVE-2020-14539, CVE-2020-14547, CVE-2020-14597, CVE-2020-14614, CVE-2020-14654, CVE-2020-14680, CVE-2020-14725)
* mysql: Server: C API multiple unspecified vulnerabilities (CVE-2019-2993, CVE-2019-3011)
* mysql: Server: DDL multiple unspecified vulnerabilities (CVE-2019-2997, CVE-2020-2580)
* mysql: Server: Parser multiple unspecified vulnerabilities (CVE-2019-3004, CVE-2020-2627, CVE-2020-2930, CVE-2020-14619)
* mysql: Server: Connection unspecified vulnerability (CVE-2019-3009)
* mysql: Server: Options multiple unspecified vulnerabilities (CVE-2020-2584, CVE-2020-14632)
* mysql: Server: DML multiple unspecified vulnerabilities (CVE-2020-2588, CVE-2020-2780, CVE-2020-14540, CVE-2020-14575, CVE-2020-14620)
* mysql: C API multiple unspecified vulnerabilities (CVE-2020-2752, CVE-2020-2922, CVE-2020-14550, CVE-2020-2570, CVE-2020-2573, CVE-2020-2574)
* mysql: Server: Logging unspecified vulnerability (CVE-2020-2770)
* mysql: Server: Memcached unspecified vulnerability (CVE-2020-2804)
* mysql: Server: Stored Procedure unspecified vulnerability (CVE-2020-2812)
* mysql: Server: Information Schema multiple unspecified vulnerabilities (CVE-2020-2896, CVE-2020-14559, CVE-2020-2694)
* mysql: Server: Charsets unspecified vulnerability (CVE-2020-2898)
* mysql: Server: Connection Handling unspecified vulnerability (CVE-2020-2903)
* mysql: Server: Group Replication Plugin unspecified vulnerability (CVE-2020-2921)
* mysql: Server: Group Replication GCS unspecified vulnerability (CVE-2020-2926)
* mysql: Server: Pluggable Auth unspecified vulnerability (CVE-2020-14553)
* mysql: Server: UDF unspecified vulnerability (CVE-2020-14576)
* mysql: Server: JSON unspecified vulnerability (CVE-2020-14624)
* mysql: Server: Security: Audit unspecified vulnerability (CVE-2020-14631)
* mysql: Server: Security: Roles multiple unspecified vulnerabilities (CVE-2020-14641, CVE-2020-14643, CVE-2020-14651)
* mysql: Server: Locking unspecified vulnerability (CVE-2020-14656)
* mysql: Information Schema unspecified vulnerability (CVE-2019-2911)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the mysql:8.0 module is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nThe following packages have been upgraded to a later upstream version: mysql (8.0.21).\n\nSecurity Fix(es):\n\n* mysql: Server: Security: Privileges multiple unspecified vulnerabilities (CVE-2020-14663, CVE-2020-14678, CVE-2020-14697, CVE-2020-2761, CVE-2020-2774, CVE-2020-2779, CVE-2020-2853, CVE-2020-14586, CVE-2020-14702)\n\n* mysql: Server: Security: Encryption multiple unspecified vulnerabilities (CVE-2019-2914, CVE-2019-2957)\n\n* mysql: InnoDB multiple unspecified vulnerabilities (CVE-2019-2938, CVE-2019-2963, CVE-2019-2968, CVE-2019-3018, CVE-2020-2577, CVE-2020-2589, CVE-2020-2760, CVE-2020-2762, CVE-2020-2814, CVE-2020-2893, CVE-2020-2895, CVE-2020-14568, CVE-2020-14623, CVE-2020-14633, CVE-2020-14634)\n\n* mysql: Server: PS multiple unspecified vulnerabilities (CVE-2019-2946, CVE-2020-2925)\n\n* mysql: Server: Replication multiple unspecified vulnerabilities (CVE-2019-2960, CVE-2020-2759, CVE-2020-2763, CVE-2020-14567)\n\n* mysql: Server: Optimizer multiple unspecified vulnerabilities (CVE-2019-2966, CVE-2019-2967, CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2998, CVE-2020-2579, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2765, CVE-2020-2892, CVE-2020-2897, CVE-2020-2901, CVE-2020-2904, CVE-2020-2923, CVE-2020-2924, CVE-2020-2928, CVE-2020-14539, CVE-2020-14547, CVE-2020-14597, CVE-2020-14614, CVE-2020-14654, CVE-2020-14680, CVE-2020-14725)\n\n* mysql: Server: C API multiple unspecified vulnerabilities (CVE-2019-2993, CVE-2019-3011)\n\n* mysql: Server: DDL multiple unspecified vulnerabilities (CVE-2019-2997, CVE-2020-2580)\n\n* mysql: Server: Parser multiple unspecified vulnerabilities (CVE-2019-3004, CVE-2020-2627, CVE-2020-2930, CVE-2020-14619)\n\n* mysql: Server: Connection unspecified vulnerability (CVE-2019-3009)\n\n* mysql: Server: Options multiple unspecified vulnerabilities (CVE-2020-2584, CVE-2020-14632)\n\n* mysql: Server: DML multiple unspecified vulnerabilities (CVE-2020-2588, CVE-2020-2780, CVE-2020-14540, CVE-2020-14575, CVE-2020-14620)\n\n* mysql: C API multiple unspecified vulnerabilities (CVE-2020-2752, CVE-2020-2922, CVE-2020-14550, CVE-2020-2570, CVE-2020-2573, CVE-2020-2574)\n\n* mysql: Server: Logging unspecified vulnerability (CVE-2020-2770)\n\n* mysql: Server: Memcached unspecified vulnerability (CVE-2020-2804)\n\n* mysql: Server: Stored Procedure unspecified vulnerability (CVE-2020-2812)\n\n* mysql: Server: Information Schema multiple unspecified vulnerabilities (CVE-2020-2896, CVE-2020-14559, CVE-2020-2694)\n\n* mysql: Server: Charsets unspecified vulnerability (CVE-2020-2898)\n\n* mysql: Server: Connection Handling unspecified vulnerability (CVE-2020-2903)\n\n* mysql: Server: Group Replication Plugin unspecified vulnerability (CVE-2020-2921)\n\n* mysql: Server: Group Replication GCS unspecified vulnerability (CVE-2020-2926)\n\n* mysql: Server: Pluggable Auth unspecified vulnerability (CVE-2020-14553)\n\n* mysql: Server: UDF unspecified vulnerability (CVE-2020-14576)\n\n* mysql: Server: JSON unspecified vulnerability (CVE-2020-14624)\n\n* mysql: Server: Security: Audit unspecified vulnerability (CVE-2020-14631)\n\n* mysql: Server: Security: Roles multiple unspecified vulnerabilities (CVE-2020-14641, CVE-2020-14643, CVE-2020-14651)\n\n* mysql: Server: Locking unspecified vulnerability (CVE-2020-14656)\n\n* mysql: Information Schema unspecified vulnerability (CVE-2019-2911)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3755",
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
},
{
"category": "external",
"summary": "1830050",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830050"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1764675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764675"
},
{
"category": "external",
"summary": "1764676",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764676"
},
{
"category": "external",
"summary": "1764680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680"
},
{
"category": "external",
"summary": "1764681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764681"
},
{
"category": "external",
"summary": "1764684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764684"
},
{
"category": "external",
"summary": "1764685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764685"
},
{
"category": "external",
"summary": "1764686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764686"
},
{
"category": "external",
"summary": "1764687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764687"
},
{
"category": "external",
"summary": "1764688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764688"
},
{
"category": "external",
"summary": "1764689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764689"
},
{
"category": "external",
"summary": "1764691",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691"
},
{
"category": "external",
"summary": "1764692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764692"
},
{
"category": "external",
"summary": "1764693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764693"
},
{
"category": "external",
"summary": "1764694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764694"
},
{
"category": "external",
"summary": "1764695",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764695"
},
{
"category": "external",
"summary": "1764696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764696"
},
{
"category": "external",
"summary": "1764698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764698"
},
{
"category": "external",
"summary": "1764699",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764699"
},
{
"category": "external",
"summary": "1764700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764700"
},
{
"category": "external",
"summary": "1764701",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764701"
},
{
"category": "external",
"summary": "1796880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796880"
},
{
"category": "external",
"summary": "1796881",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796881"
},
{
"category": "external",
"summary": "1796882",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796882"
},
{
"category": "external",
"summary": "1796883",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796883"
},
{
"category": "external",
"summary": "1796885",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796885"
},
{
"category": "external",
"summary": "1796886",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796886"
},
{
"category": "external",
"summary": "1796887",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796887"
},
{
"category": "external",
"summary": "1796888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796888"
},
{
"category": "external",
"summary": "1796889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796889"
},
{
"category": "external",
"summary": "1796905",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796905"
},
{
"category": "external",
"summary": "1798559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798559"
},
{
"category": "external",
"summary": "1798576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798576"
},
{
"category": "external",
"summary": "1798587",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798587"
},
{
"category": "external",
"summary": "1830048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830048"
},
{
"category": "external",
"summary": "1830049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830049"
},
{
"category": "external",
"summary": "1830051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830051"
},
{
"category": "external",
"summary": "1830052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830052"
},
{
"category": "external",
"summary": "1830053",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830053"
},
{
"category": "external",
"summary": "1830054",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830054"
},
{
"category": "external",
"summary": "1830055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830055"
},
{
"category": "external",
"summary": "1830056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830056"
},
{
"category": "external",
"summary": "1830058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830058"
},
{
"category": "external",
"summary": "1830059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830059"
},
{
"category": "external",
"summary": "1830060",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830060"
},
{
"category": "external",
"summary": "1830061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830061"
},
{
"category": "external",
"summary": "1830062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830062"
},
{
"category": "external",
"summary": "1830064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830064"
},
{
"category": "external",
"summary": "1830066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830066"
},
{
"category": "external",
"summary": "1830067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830067"
},
{
"category": "external",
"summary": "1830068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830068"
},
{
"category": "external",
"summary": "1830069",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830069"
},
{
"category": "external",
"summary": "1830070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830070"
},
{
"category": "external",
"summary": "1830071",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830071"
},
{
"category": "external",
"summary": "1830072",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830072"
},
{
"category": "external",
"summary": "1830073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830073"
},
{
"category": "external",
"summary": "1830074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830074"
},
{
"category": "external",
"summary": "1830075",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830075"
},
{
"category": "external",
"summary": "1830076",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830076"
},
{
"category": "external",
"summary": "1830077",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830077"
},
{
"category": "external",
"summary": "1830078",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830078"
},
{
"category": "external",
"summary": "1830079",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830079"
},
{
"category": "external",
"summary": "1830082",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830082"
},
{
"category": "external",
"summary": "1835849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835849"
},
{
"category": "external",
"summary": "1835850",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835850"
},
{
"category": "external",
"summary": "1865945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945"
},
{
"category": "external",
"summary": "1865947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865947"
},
{
"category": "external",
"summary": "1865948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865948"
},
{
"category": "external",
"summary": "1865949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865949"
},
{
"category": "external",
"summary": "1865950",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865950"
},
{
"category": "external",
"summary": "1865951",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865951"
},
{
"category": "external",
"summary": "1865952",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865952"
},
{
"category": "external",
"summary": "1865953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865953"
},
{
"category": "external",
"summary": "1865954",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865954"
},
{
"category": "external",
"summary": "1865955",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865955"
},
{
"category": "external",
"summary": "1865956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865956"
},
{
"category": "external",
"summary": "1865958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865958"
},
{
"category": "external",
"summary": "1865959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865959"
},
{
"category": "external",
"summary": "1865960",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865960"
},
{
"category": "external",
"summary": "1865961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865961"
},
{
"category": "external",
"summary": "1865962",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865962"
},
{
"category": "external",
"summary": "1865963",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865963"
},
{
"category": "external",
"summary": "1865964",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865964"
},
{
"category": "external",
"summary": "1865965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865965"
},
{
"category": "external",
"summary": "1865966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865966"
},
{
"category": "external",
"summary": "1865967",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865967"
},
{
"category": "external",
"summary": "1865968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865968"
},
{
"category": "external",
"summary": "1865969",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865969"
},
{
"category": "external",
"summary": "1865970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865970"
},
{
"category": "external",
"summary": "1865971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865971"
},
{
"category": "external",
"summary": "1865972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865972"
},
{
"category": "external",
"summary": "1865973",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865973"
},
{
"category": "external",
"summary": "1865974",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865974"
},
{
"category": "external",
"summary": "1865975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865975"
},
{
"category": "external",
"summary": "1865976",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865976"
},
{
"category": "external",
"summary": "1865977",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865977"
},
{
"category": "external",
"summary": "1865982",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865982"
},
{
"category": "external",
"summary": "1796884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796884"
},
{
"category": "external",
"summary": "1874044",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1874044"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3755.json"
}
],
"title": "Red Hat Security Advisory: mysql:8.0 security update",
"tracking": {
"current_release_date": "2025-10-10T02:11:37+00:00",
"generator": {
"date": "2025-10-10T02:11:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2020:3755",
"initial_release_date": "2020-09-15T16:18:39+00:00",
"revision_history": [
{
"date": "2020-09-15T16:18:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-09-15T16:18:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T02:11:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.0::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"product": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm (mysql:8.0)",
"product_id": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=src\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"product": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm (mysql:8.0)",
"product_id": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-ipadic@2.7.0.20070801-16.module%2Bel8.0.0%2B3898%2Be09bb8de?arch=src\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"product": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm (mysql:8.0)",
"product_id": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=src\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0)",
"product_id": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product": {
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0)",
"product_id": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-debuginfo@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product": {
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0)",
"product_id": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-debugsource@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"product": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm (mysql:8.0)",
"product_id": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-ipadic@2.7.0.20070801-16.module%2Bel8.0.0%2B3898%2Be09bb8de?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"product": {
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm (mysql:8.0)",
"product_id": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-ipadic-EUCJP@2.7.0.20070801-16.module%2Bel8.0.0%2B3898%2Be09bb8de?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-common@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-debugsource@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-devel@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-devel-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-errmsg@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-libs@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-libs-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-server@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-server-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-test@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product": {
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0)",
"product_id": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-test-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=x86_64\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0)",
"product_id": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0)",
"product_id": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-debuginfo@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0)",
"product_id": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-debugsource@0.996-1.module%2Bel8.0.0%2B3898%2Be09bb8de.9?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm (mysql:8.0)",
"product_id": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-ipadic@2.7.0.20070801-16.module%2Bel8.0.0%2B3898%2Be09bb8de?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm (mysql:8.0)",
"product_id": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mecab-ipadic-EUCJP@2.7.0.20070801-16.module%2Bel8.0.0%2B3898%2Be09bb8de?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-common@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-debugsource@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-devel@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-devel-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-errmsg@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-libs@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-libs-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-server@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-server-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-test@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
},
{
"category": "product_version",
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product": {
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0)",
"product_id": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql-test-debuginfo@8.0.21-1.module%2Bel8.0.0%2B7853%2B3a2b0b25?arch=ppc64le\u0026rpmmod=mysql:8.0:8000020200828111808:f8e95b4e"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0"
},
"product_reference": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0"
},
"product_reference": "mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0"
},
"product_reference": "mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0"
},
"product_reference": "mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0"
},
"product_reference": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0"
},
"product_reference": "mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0"
},
"product_reference": "mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0"
},
"product_reference": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0"
},
"product_reference": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm (mysql:8.0) as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
},
"product_reference": "mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-2911",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764675"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Information Schema). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Information Schema unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2911"
},
{
"category": "external",
"summary": "RHBZ#1764675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764675"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2911",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2911"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2911",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2911"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Information Schema unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2914",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764676"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2914"
},
{
"category": "external",
"summary": "RHBZ#1764676",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764676"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2914",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2914"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2938",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764680"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2938"
},
{
"category": "external",
"summary": "RHBZ#1764680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2938",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2938"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2946",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764681"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: PS unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2946"
},
{
"category": "external",
"summary": "RHBZ#1764681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2946",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2946"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2946",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2946"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: PS unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2957",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2957"
},
{
"category": "external",
"summary": "RHBZ#1764684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2957",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2957"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2957",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2957"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2960",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2960"
},
{
"category": "external",
"summary": "RHBZ#1764685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2960",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2960"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2960",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2960"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2963",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2963"
},
{
"category": "external",
"summary": "RHBZ#1764686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2963",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2963"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2963",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2963"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2966",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764687"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2966"
},
{
"category": "external",
"summary": "RHBZ#1764687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2966",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2966"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2966",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2966"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2967",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764688"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2967"
},
{
"category": "external",
"summary": "RHBZ#1764688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2967",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2967"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2967",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2967"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2968",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764689"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2968"
},
{
"category": "external",
"summary": "RHBZ#1764689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2968",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2968"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2968",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2968"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2974",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764691"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2974"
},
{
"category": "external",
"summary": "RHBZ#1764691",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2974",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2974"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2974",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2974"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2982",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764692"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2982"
},
{
"category": "external",
"summary": "RHBZ#1764692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764692"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2982",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2982"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2982",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2982"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2991",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764693"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.017 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2991"
},
{
"category": "external",
"summary": "RHBZ#1764693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764693"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2991",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2991"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2991",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2991"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2993",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764694"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: C API unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2993"
},
{
"category": "external",
"summary": "RHBZ#1764694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764694"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2993",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2993"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2993",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2993"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: C API unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2997",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764695"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2997"
},
{
"category": "external",
"summary": "RHBZ#1764695",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764695"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2997",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2997"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2997",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2997"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-2998",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764696"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-2998"
},
{
"category": "external",
"summary": "RHBZ#1764696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-2998",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2998"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-2998",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2998"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-3004",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764698"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Parser unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3004"
},
{
"category": "external",
"summary": "RHBZ#1764698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3004",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3004"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Parser unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-3009",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764699"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection). Supported versions that are affected are 8.0.17 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Connection unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3009"
},
{
"category": "external",
"summary": "RHBZ#1764699",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764699"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3009"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3009",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3009"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Connection unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-3011",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764700"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: C API unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3011"
},
{
"category": "external",
"summary": "RHBZ#1764700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764700"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3011",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3011"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3011",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3011"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: C API unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2019-3018",
"discovery_date": "2019-10-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1764701"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.17 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-3018"
},
{
"category": "external",
"summary": "RHBZ#1764701",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764701"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-3018",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3018"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3018",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3018"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
}
],
"release_date": "2019-10-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Oct 2019)"
},
{
"cve": "CVE-2020-2570",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2020-01-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798559"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2570"
},
{
"category": "external",
"summary": "RHBZ#1798559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798559"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2570",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2570"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2570",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2570"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2573",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2020-01-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798576"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2573"
},
{
"category": "external",
"summary": "RHBZ#1798576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798576"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2573",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2573"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2573",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2573"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2574",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2020-02-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798587"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2574"
},
{
"category": "external",
"summary": "RHBZ#1798587",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798587"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2574",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2574"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2574",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2574"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2577",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796880"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2577"
},
{
"category": "external",
"summary": "RHBZ#1796880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2577",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2577"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2577",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2577"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2579",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796881"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2579"
},
{
"category": "external",
"summary": "RHBZ#1796881",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796881"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2579"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2579",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2579"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2580",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796882"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2580"
},
{
"category": "external",
"summary": "RHBZ#1796882",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796882"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2580",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2580"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2580",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2580"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2584",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796883"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Options unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2584"
},
{
"category": "external",
"summary": "RHBZ#1796883",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796883"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2584",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2584"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2584",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2584"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Options unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2588",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796884"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2588"
},
{
"category": "external",
"summary": "RHBZ#1796884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2588"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2589",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796885"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.28 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2589"
},
{
"category": "external",
"summary": "RHBZ#1796885",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796885"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2589",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2589"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2589",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2589"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2627",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796905"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Parser unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2627"
},
{
"category": "external",
"summary": "RHBZ#1796905",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796905"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2627"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2627",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2627"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Parser unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2660",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796886"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2660"
},
{
"category": "external",
"summary": "RHBZ#1796886",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796886"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2660",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2660"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2660",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2660"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2679",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796887"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2679"
},
{
"category": "external",
"summary": "RHBZ#1796887",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796887"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2679",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2679"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2686",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796888"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2686"
},
{
"category": "external",
"summary": "RHBZ#1796888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2686"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2686",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2686"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2694",
"discovery_date": "2020-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1796889"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.18 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Information Schema unspecified vulnerability (CPU Jan 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2694"
},
{
"category": "external",
"summary": "RHBZ#1796889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796889"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2694"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2694",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2694"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2020.html",
"url": "https://www.oracle.com/security-alerts/cpujan2020.html"
}
],
"release_date": "2020-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: Information Schema unspecified vulnerability (CPU Jan 2020)"
},
{
"cve": "CVE-2020-2752",
"discovery_date": "2020-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1835849"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2752"
},
{
"category": "external",
"summary": "RHBZ#1835849",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835849"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2752"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2759",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830048"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2759"
},
{
"category": "external",
"summary": "RHBZ#1830048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830048"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2759",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2759"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2759",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2759"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2760",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830082"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2760"
},
{
"category": "external",
"summary": "RHBZ#1830082",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830082"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2760",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2760"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2760",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2760"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2761",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830049"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2761"
},
{
"category": "external",
"summary": "RHBZ#1830049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2761",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2761"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2761",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2761"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2762",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830050"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2762"
},
{
"category": "external",
"summary": "RHBZ#1830050",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830050"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2762",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2762"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2762",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2762"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2763",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830051"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2763"
},
{
"category": "external",
"summary": "RHBZ#1830051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830051"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2763",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2763"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2763",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2763"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2765",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830052"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2765"
},
{
"category": "external",
"summary": "RHBZ#1830052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830052"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2765",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2765"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2765",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2765"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2770",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830053"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Logging unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2770"
},
{
"category": "external",
"summary": "RHBZ#1830053",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830053"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2770",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2770"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2770",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2770"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Logging unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2774",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830054"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2774"
},
{
"category": "external",
"summary": "RHBZ#1830054",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830054"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2774",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2774"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2774",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2774"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2779",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830055"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2779"
},
{
"category": "external",
"summary": "RHBZ#1830055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830055"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2779"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2780",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830056"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2780"
},
{
"category": "external",
"summary": "RHBZ#1830056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2780",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2780"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2780",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2780"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2804",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830058"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Memcached). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2804"
},
{
"category": "external",
"summary": "RHBZ#1830058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830058"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2804"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2804",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2804"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2812",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830059"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2812"
},
{
"category": "external",
"summary": "RHBZ#1830059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830059"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2812"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2814",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830060"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.47 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2814"
},
{
"category": "external",
"summary": "RHBZ#1830060",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830060"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2814"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2814",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2814"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2853",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830061"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2853"
},
{
"category": "external",
"summary": "RHBZ#1830061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2853",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2853"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2853",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2853"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2892",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830062"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2892"
},
{
"category": "external",
"summary": "RHBZ#1830062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830062"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2892",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2892"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2892",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2892"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2893",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830064"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2893"
},
{
"category": "external",
"summary": "RHBZ#1830064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830064"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2893",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2893"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2893",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2893"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2895",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830066"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2895"
},
{
"category": "external",
"summary": "RHBZ#1830066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2895",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2895"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2895",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2895"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2896",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830067"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2896"
},
{
"category": "external",
"summary": "RHBZ#1830067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2896",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2896"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2897",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830068"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2897"
},
{
"category": "external",
"summary": "RHBZ#1830068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830068"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2897",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2897"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2897",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2897"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2898",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830069"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). The supported version that is affected is 8.0.19. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Charsets unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2898"
},
{
"category": "external",
"summary": "RHBZ#1830069",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830069"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2898",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2898"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2898",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2898"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Charsets unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2901",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830070"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2901"
},
{
"category": "external",
"summary": "RHBZ#1830070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2901"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2901",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2901"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2903",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830071"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Connection Handling unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2903"
},
{
"category": "external",
"summary": "RHBZ#1830071",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830071"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2903",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2903"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2903",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2903"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Connection Handling unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2904",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830072"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2904"
},
{
"category": "external",
"summary": "RHBZ#1830072",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830072"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2904",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2904"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2904",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2904"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2921",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830073"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2921"
},
{
"category": "external",
"summary": "RHBZ#1830073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830073"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2921",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2921"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2921",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2921"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2922",
"discovery_date": "2020-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1835850"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2922"
},
{
"category": "external",
"summary": "RHBZ#1835850",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835850"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2922",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2922"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2922",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2922"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2923",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830074"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2923"
},
{
"category": "external",
"summary": "RHBZ#1830074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830074"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2923"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2923",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2923"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2924",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830075"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2924"
},
{
"category": "external",
"summary": "RHBZ#1830075",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830075"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2924",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2924"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2924",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2924"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2925",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830076"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: PS unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2925"
},
{
"category": "external",
"summary": "RHBZ#1830076",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830076"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2925",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2925"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2925",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2925"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: PS unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2926",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830077"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Group Replication GCS unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2926"
},
{
"category": "external",
"summary": "RHBZ#1830077",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830077"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2926",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2926"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Group Replication GCS unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2928",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830078"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2928"
},
{
"category": "external",
"summary": "RHBZ#1830078",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830078"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2928",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2928"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-2930",
"discovery_date": "2020-04-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1830079"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Parser unspecified vulnerability (CPU Apr 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-2930"
},
{
"category": "external",
"summary": "RHBZ#1830079",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830079"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-2930",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2930"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2930",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2930"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}
],
"release_date": "2020-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Parser unspecified vulnerability (CPU Apr 2020)"
},
{
"cve": "CVE-2020-14539",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865945"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14539"
},
{
"category": "external",
"summary": "RHBZ#1865945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14539",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14539"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14540",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865947"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14540"
},
{
"category": "external",
"summary": "RHBZ#1865947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865947"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14540"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14547",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865948"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14547"
},
{
"category": "external",
"summary": "RHBZ#1865948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14547"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14547",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14547"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14550",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865949"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14550"
},
{
"category": "external",
"summary": "RHBZ#1865949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14550",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14550"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14550",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14550"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14553",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865950"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14553"
},
{
"category": "external",
"summary": "RHBZ#1865950",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865950"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14553",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14553"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14553",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14553"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14559",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865951"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14559"
},
{
"category": "external",
"summary": "RHBZ#1865951",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865951"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14559"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14559",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14559"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14567",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865952"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14567"
},
{
"category": "external",
"summary": "RHBZ#1865952",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865952"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14567",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14567"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14567",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14567"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14568",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865953"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14568"
},
{
"category": "external",
"summary": "RHBZ#1865953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14568",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14568"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14568",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14568"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14575",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865954"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14575"
},
{
"category": "external",
"summary": "RHBZ#1865954",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865954"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14575",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14575"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14575",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14575"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14576",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865955"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: UDF unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14576"
},
{
"category": "external",
"summary": "RHBZ#1865955",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865955"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14576",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14576"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14576",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14576"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: UDF unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14586",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865956"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14586"
},
{
"category": "external",
"summary": "RHBZ#1865956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865956"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14586",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14586"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14586",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14586"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14597",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865958"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14597"
},
{
"category": "external",
"summary": "RHBZ#1865958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865958"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14597",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14597"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14597",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14597"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14614",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865959"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14614"
},
{
"category": "external",
"summary": "RHBZ#1865959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865959"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14614",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14614"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14614",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14614"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14619",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865960"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Parser unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14619"
},
{
"category": "external",
"summary": "RHBZ#1865960",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865960"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14619"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14619",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14619"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Parser unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14620",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865961"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14620"
},
{
"category": "external",
"summary": "RHBZ#1865961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14620",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14620"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14620",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14620"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14623",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865962"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14623"
},
{
"category": "external",
"summary": "RHBZ#1865962",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865962"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14623",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14623"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14623",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14623"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14624",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865963"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: JSON unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14624"
},
{
"category": "external",
"summary": "RHBZ#1865963",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865963"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14624",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14624"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14624",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14624"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: JSON unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14631",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865964"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Audit). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Audit unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14631"
},
{
"category": "external",
"summary": "RHBZ#1865964",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865964"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14631",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14631"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14631",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14631"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Audit unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14632",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865965"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Options unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14632"
},
{
"category": "external",
"summary": "RHBZ#1865965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865965"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14632"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Options unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14633",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865966"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14633"
},
{
"category": "external",
"summary": "RHBZ#1865966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14633",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14633"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14633",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14633"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14634",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865967"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14634"
},
{
"category": "external",
"summary": "RHBZ#1865967",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865967"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14634",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14634"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14634",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14634"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: InnoDB unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14641",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865968"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14641"
},
{
"category": "external",
"summary": "RHBZ#1865968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14641",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14641"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14643",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865969"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14643"
},
{
"category": "external",
"summary": "RHBZ#1865969",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865969"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14643",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14643"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14643",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14643"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14651",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865982"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14651"
},
{
"category": "external",
"summary": "RHBZ#1865982",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865982"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14651",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14651"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14654",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865970"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14654"
},
{
"category": "external",
"summary": "RHBZ#1865970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14654",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14654"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14654",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14654"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14656",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865971"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Locking unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14656"
},
{
"category": "external",
"summary": "RHBZ#1865971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865971"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14656",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14656"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Locking unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14663",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865972"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14663"
},
{
"category": "external",
"summary": "RHBZ#1865972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865972"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14663",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14663"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14663",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14663"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14678",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865973"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14678"
},
{
"category": "external",
"summary": "RHBZ#1865973",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865973"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14678",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14678"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14680",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865974"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14680"
},
{
"category": "external",
"summary": "RHBZ#1865974",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865974"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14680",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14680"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14680",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14680"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14697",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865975"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14697"
},
{
"category": "external",
"summary": "RHBZ#1865975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865975"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14697",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14697"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14697",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14697"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14702",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865976"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14702"
},
{
"category": "external",
"summary": "RHBZ#1865976",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865976"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14702",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14702"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14702",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14702"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14725",
"discovery_date": "2020-08-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1865977"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14725"
},
{
"category": "external",
"summary": "RHBZ#1865977",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865977"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14725",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14725"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html#AppendixMSQL"
}
],
"release_date": "2020-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020)"
},
{
"cve": "CVE-2020-14799",
"discovery_date": "2020-10-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1890752"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2020)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14799"
},
{
"category": "external",
"summary": "RHBZ#1890752",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890752"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14799",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14799"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuoct2020.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html#AppendixMSQL"
}
],
"release_date": "2020-10-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2020)"
},
{
"cve": "CVE-2021-1998",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922378"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-1998"
},
{
"category": "external",
"summary": "RHBZ#1922378",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922378"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-1998",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-1998"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-1998",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-1998"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2006",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922381"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2006"
},
{
"category": "external",
"summary": "RHBZ#1922381",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922381"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2006",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2006"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2006",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2006"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2007",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922382"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: C API unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2007"
},
{
"category": "external",
"summary": "RHBZ#1922382",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922382"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2007",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2007"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2007",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2007"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: C API unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2009",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922424"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2009"
},
{
"category": "external",
"summary": "RHBZ#1922424",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922424"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2009",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2009"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2009",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2009"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Roles unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2012",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922422"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2012"
},
{
"category": "external",
"summary": "RHBZ#1922422",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922422"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2012",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2012"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2012",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2012"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2016",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922420"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2016"
},
{
"category": "external",
"summary": "RHBZ#1922420",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922420"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2016",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2016"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2016",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2016"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2019",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922386"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2019"
},
{
"category": "external",
"summary": "RHBZ#1922386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2019",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2019"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2019",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2019"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2020",
"discovery_date": "2021-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1922387"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2020"
},
{
"category": "external",
"summary": "RHBZ#1922387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922387"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2020",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2020"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html#AppendixMSQL"
}
],
"release_date": "2021-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)"
},
{
"cve": "CVE-2021-2144",
"discovery_date": "2021-04-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1951749"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Parser unspecified vulnerability (CPU Apr 2021)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In Red Hat OpenStack Platform, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP mysql package.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2144"
},
{
"category": "external",
"summary": "RHBZ#1951749",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951749"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2144",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2144"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuapr2021.html#AppendixMSQL"
}
],
"release_date": "2021-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Parser unspecified vulnerability (CPU Apr 2021)"
},
{
"cve": "CVE-2021-2160",
"discovery_date": "2021-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1952806"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2021)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-2160"
},
{
"category": "external",
"summary": "RHBZ#1952806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1952806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-2160",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2160"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-2160",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2160"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuapr2021.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuapr2021.html#AppendixMSQL"
}
],
"release_date": "2021-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-15T16:18:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debuginfo-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-debugsource-0.996-1.module+el8.0.0+3898+e09bb8de.9.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.src.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-common-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-debugsource-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-devel-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-errmsg-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-libs-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-server-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.ppc64le.rpm-mysql:8.0",
"AppStream-8.0.0.Z.E4S:mysql-test-debuginfo-8.0.21-1.module+el8.0.0+7853+3a2b0b25.x86_64.rpm-mysql:8.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2021)"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…