Fedora 27 : community-mysql (2018-7025a5c25d)
high Nessus Plugin ID 109561
New! Plugin Severity Now Using CVSS v3
The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Synopsis
The remote Fedora host is missing a security update.Description
**MySQL 5.7.22****Changelog**
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-22.html
**CVEs fixed**
CVE-2018-2755 CVE-2018-2758 CVE-2018-2759 CVE-2018-2761 CVE-2018-2762 CVE-2018-2766 CVE-2018-2769 CVE-2018-2771 CVE-2018-2773 CVE-2018-2775 CVE-2018-2776 CVE-2018-2777 CVE-2018-2778 CVE-2018-2779 CVE-2018-2780 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2786 CVE-2018-2787 CVE-2018-2810 CVE-2018-2812 CVE-2018-2813 CVE-2018-2816 CVE-2018-2817 CVE-2018-2818 CVE-2018-2819 CVE-2018-2839 CVE-2018-2846
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
Update the affected community-mysql package.See Also
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7025a5c25d
Plugin Details
Severity: High
ID: 109561
File Name: fedora_2018-7025a5c25d.nasl
Version: 1.6
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 5/4/2018
Updated: 1/6/2021
Dependencies: ssh_get_info.nasl
Risk Information
VPR
Risk Factor: High
Score: 7.3
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
CVSS v3
Risk Factor: High
Base Score: 7.7
Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Information
CPE: p-cpe:/a:fedoraproject:fedora:community-mysql, cpe:/o:fedoraproject:fedora:27
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Patch Publication Date: 5/3/2018
Vulnerability Publication Date: 4/19/2018
Reference Information
CVE: CVE-2018-2755, CVE-2018-2758, CVE-2018-2759, CVE-2018-2761, CVE-2018-2762, CVE-2018-2766, CVE-2018-2769, CVE-2018-2771, CVE-2018-2773, CVE-2018-2775, CVE-2018-2776, CVE-2018-2777, CVE-2018-2778, CVE-2018-2779, CVE-2018-2780, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE-2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2812, CVE-2018-2813, CVE-2018-2816, CVE-2018-2817, CVE-2018-2818, CVE-2018-2819, CVE-2018-2839, CVE-2018-2846
FEDORA: 2018-7025a5c25d