|
|
Log in / Subscribe / Register

Ubuntu alert USN-7994-1 (mysql-8.0, mysql-8.4)



From:
              noreply+usn-bot@canonical.com


To:
              ubuntu-security-announce@lists.ubuntu.com


Subject:
              [USN-7994-1] MySQL vulnerabilities


Date:
              Tue, 03 Feb 2026 00:06:18 +0000


Message-ID:
              <E1vn3vu-0003K5-2d@lists.ubuntu.com>


==========================================================================
Ubuntu Security Notice USN-7994-1
February 02, 2026

mysql-8.0, mysql-8.4 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 25.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
- mysql-8.4: MySQL database
- mysql-8.0: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 8.0.45 in Ubuntu 22.04 LTS and Ubuntu 24.04 LTS.
Ubuntu 25.10 has been updated to MySQL 8.4.8.

In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.

Please see the following for more information:

https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-...
https://dev.mysql.com/doc/relnotes/mysql/8.4/en/news-8-4-...
https://www.oracle.com/security-alerts/cpujan2026.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  mysql-server                    8.4.8-0ubuntu0.25.10.1

Ubuntu 24.04 LTS
  mysql-server-8.0                8.0.45-0ubuntu0.24.04.1

Ubuntu 22.04 LTS
  mysql-server-8.0                8.0.45-0ubuntu0.22.04.1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-7994-1
  CVE-2026-21936, CVE-2026-21937, CVE-2026-21941, CVE-2026-21948,
  CVE-2026-21964, CVE-2026-21968

Package Information:
  https://launchpad.net/ubuntu/+source/mysql-8.4/8.4.8-0ubu...
  https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.45-0ub...
  https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.45-0ub...




Attachment: signature.asc (type=application/pgp-signature)

-----BEGIN PGP SIGNATURE-----
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=TdUx
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds