Candidate: CVE-2019-2822
PublicDate: 2019-07-23 23:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2822
Description:
 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent:
 Shell: Admin / InnoDB Cluster). Supported versions that are affected are
 8.0.16 and prior. Difficult to exploit vulnerability allows unauthenticated
 attacker with network access via multiple protocols to compromise MySQL
 Server. Successful attacks require human interaction from a person other
 than the attacker. Successful attacks of this vulnerability can result in
 takeover of MySQL Server. CVSS 3.0 Base Score 7.5 (Confidentiality,
 Integrity and Availability impacts). CVSS Vector:
 (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).
Ubuntu-Description:
Notes:
 mdeslaur> 8.x only
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H [7.5 HIGH]

Patches_mysql-5.5:
upstream_mysql-5.5: needs-triage
precise/esm_mysql-5.5: not-affected
trusty_mysql-5.5: not-affected
trusty/esm_mysql-5.5: not-affected
vivid_mysql-5.5: DNE
xenial_mysql-5.5: DNE
bionic_mysql-5.5: DNE
disco_mysql-5.5: DNE
eoan_mysql-5.5: DNE
focal_mysql-5.5: DNE
groovy_mysql-5.5: DNE
hirsute_mysql-5.5: DNE
impish_mysql-5.5: DNE
jammy_mysql-5.5: DNE
devel_mysql-5.5: DNE

Patches_mysql-5.7:
upstream_mysql-5.7: not-affected (debian: Only affects MySQL 8)
precise/esm_mysql-5.7: DNE
trusty_mysql-5.7: DNE
trusty/esm_mysql-5.7: DNE
xenial_mysql-5.7: not-affected
esm-infra/xenial_mysql-5.7: not-affected
bionic_mysql-5.7: not-affected
disco_mysql-5.7: not-affected
eoan_mysql-5.7: DNE
focal_mysql-5.7: DNE
groovy_mysql-5.7: DNE
hirsute_mysql-5.7: DNE
impish_mysql-5.7: DNE
jammy_mysql-5.7: DNE
devel_mysql-5.7: DNE

Patches_mariadb-5.5:
upstream_mariadb-5.5: not-affected (doesn't affect mariadb)
precise/esm_mariadb-5.5: DNE
trusty_mariadb-5.5: ignored (out of standard support)
trusty/esm_mariadb-5.5: DNE
xenial_mariadb-5.5: DNE
bionic_mariadb-5.5: DNE
disco_mariadb-5.5: DNE
eoan_mariadb-5.5: DNE
focal_mariadb-5.5: DNE
groovy_mariadb-5.5: DNE
hirsute_mariadb-5.5: DNE
impish_mariadb-5.5: DNE
jammy_mariadb-5.5: DNE
devel_mariadb-5.5: DNE

Patches_mariadb-10.0:
upstream_mariadb-10.0: not-affected (doesn't affect mariadb)
precise/esm_mariadb-10.0: DNE
trusty_mariadb-10.0: DNE
trusty/esm_mariadb-10.0: DNE
xenial_mariadb-10.0: not-affected (doesn't affect mariadb)
bionic_mariadb-10.0: DNE
disco_mariadb-10.0: DNE
eoan_mariadb-10.0: DNE
focal_mariadb-10.0: DNE
groovy_mariadb-10.0: DNE
hirsute_mariadb-10.0: DNE
impish_mariadb-10.0: DNE
jammy_mariadb-10.0: DNE
devel_mariadb-10.0: DNE

Patches_mariadb-10.1:
upstream_mariadb-10.1: not-affected (doesn't affect mariadb)
precise/esm_mariadb-10.1: DNE
trusty_mariadb-10.1: DNE
trusty/esm_mariadb-10.1: DNE
xenial_mariadb-10.1: DNE
bionic_mariadb-10.1: not-affected (doesn't affect mariadb)
disco_mariadb-10.1: DNE
eoan_mariadb-10.1: DNE
focal_mariadb-10.1: DNE
groovy_mariadb-10.1: DNE
hirsute_mariadb-10.1: DNE
impish_mariadb-10.1: DNE
jammy_mariadb-10.1: DNE
devel_mariadb-10.1: DNE

Patches_percona-xtradb-cluster-5.5:
upstream_percona-xtradb-cluster-5.5: needs-triage
precise/esm_percona-xtradb-cluster-5.5: DNE
trusty_percona-xtradb-cluster-5.5: ignored (out of standard support)
trusty/esm_percona-xtradb-cluster-5.5: DNE
xenial_percona-xtradb-cluster-5.5: DNE
bionic_percona-xtradb-cluster-5.5: DNE
disco_percona-xtradb-cluster-5.5: DNE
eoan_percona-xtradb-cluster-5.5: DNE
focal_percona-xtradb-cluster-5.5: DNE
groovy_percona-xtradb-cluster-5.5: DNE
hirsute_percona-xtradb-cluster-5.5: DNE
impish_percona-xtradb-cluster-5.5: DNE
jammy_percona-xtradb-cluster-5.5: DNE
devel_percona-xtradb-cluster-5.5: DNE

Patches_percona-xtradb-cluster-5.6:
upstream_percona-xtradb-cluster-5.6: needs-triage
precise/esm_percona-xtradb-cluster-5.6: DNE
trusty_percona-xtradb-cluster-5.6: DNE
trusty/esm_percona-xtradb-cluster-5.6: DNE
xenial_percona-xtradb-cluster-5.6: ignored (end of standard support, was needs-triage)
bionic_percona-xtradb-cluster-5.6: DNE
disco_percona-xtradb-cluster-5.6: DNE
eoan_percona-xtradb-cluster-5.6: DNE
focal_percona-xtradb-cluster-5.6: DNE
groovy_percona-xtradb-cluster-5.6: DNE
hirsute_percona-xtradb-cluster-5.6: DNE
impish_percona-xtradb-cluster-5.6: DNE
jammy_percona-xtradb-cluster-5.6: DNE
devel_percona-xtradb-cluster-5.6: DNE

Patches_percona-server-5.6:
upstream_percona-server-5.6: needs-triage
precise/esm_percona-server-5.6: DNE
trusty_percona-server-5.6: DNE
trusty/esm_percona-server-5.6: DNE
xenial_percona-server-5.6: ignored (end of standard support, was needs-triage)
bionic_percona-server-5.6: DNE
disco_percona-server-5.6: DNE
eoan_percona-server-5.6: DNE
focal_percona-server-5.6: DNE
groovy_percona-server-5.6: DNE
hirsute_percona-server-5.6: DNE
impish_percona-server-5.6: DNE
jammy_percona-server-5.6: DNE
devel_percona-server-5.6: DNE

Patches_mysql-8.0:
upstream_mysql-8.0: needs-triage
precise/esm_mysql-8.0: DNE
trusty_mysql-8.0: DNE
trusty/esm_mysql-8.0: DNE
xenial_mysql-8.0: DNE
bionic_mysql-8.0: DNE
disco_mysql-8.0: DNE
eoan_mysql-8.0: not-affected
focal_mysql-8.0: not-affected
groovy_mysql-8.0: not-affected
hirsute_mysql-8.0: not-affected
impish_mysql-8.0: not-affected
jammy_mysql-8.0: not-affected
devel_mysql-8.0: not-affected