Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 717628 (CVE-2020-2570, CVE-2020-2572, CVE-2020-2573, CVE-2020-2577, CVE-2020-2579, CVE-2020-2580, CVE-2020-2584, CVE-2020-2588, CVE-2020-2589, CVE-2020-2627, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2694, CVE-2020-2759, CVE-2020-2761, CVE-2020-2762, CVE-2020-2763, CVE-2020-2765, CVE-2020-2768, CVE-2020-2770, CVE-2020-2774, CVE-2020-2779, CVE-2020-2780, CVE-2020-2790, CVE-2020-2804, CVE-2020-2806, CVE-2020-2853, CVE-2020-2875, CVE-2020-2892, CVE-2020-2893, CVE-2020-2895, CVE-2020-2896, CVE-2020-2897, CVE-2020-2898, CVE-2020-2901, CVE-2020-2903, CVE-2020-2904, CVE-2020-2921, CVE-2020-2922, CVE-2020-2923, CVE-2020-2924, CVE-2020-2925, CVE-2020-2926, CVE-2020-2928, CVE-2020-2930, CVE-2020-2933, CVE-2020-2934)

Summary: <dev-db/mysql-{5.7.30,8.0.20}: Multiple vulnerabilities (CPU April 2020)
Product: Gentoo Security Reporter: GLSAMaker/CVETool Bot <glsamaker>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor CC: ajak, mysql-bugs, ppc64, ppc
Priority: Normal Flags: nattka: sanity-check+
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B3 [glsa+ cve]
Package list:
dev-db/mysql-5.7.30-r1 dev-db/mysql-8.0.20-r1
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 699876, 722780    

Description GLSAMaker/CVETool Bot gentoo-dev 2020-04-15 21:38:54 UTC
CVE-2020-2934 (https://nvd.nist.gov/vuln/detail/CVE-2020-2934):
  Vulnerability in the MySQL Connectors product of Oracle MySQL (component:
  Connector/J). Supported versions that are affected are 8.0.19 and prior and
  5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated
  attacker with network access via multiple protocols to compromise MySQL
  Connectors. Successful attacks require human interaction from a person other
  than the attacker. Successful attacks of this vulnerability can result in
  unauthorized update, insert or delete access to some of MySQL Connectors
  accessible data as well as unauthorized read access to a subset of MySQL
  Connectors accessible data and unauthorized ability to cause a partial
  denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 5.0
  (Confidentiality, Integrity and Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L).

CVE-2020-2760 (https://nvd.nist.gov/vuln/detail/CVE-2020-2760):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 5.7.29 and prior and
  8.0.19 and prior. Easily exploitable vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server as well as unauthorized update, insert or delete access to some
  of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and
  Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).

CVE-2020-2762 (https://nvd.nist.gov/vuln/detail/CVE-2020-2762):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2893 (https://nvd.nist.gov/vuln/detail/CVE-2020-2893):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2895 (https://nvd.nist.gov/vuln/detail/CVE-2020-2895):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2898 (https://nvd.nist.gov/vuln/detail/CVE-2020-2898):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Charsets). The supported version that is affected is 8.0.19. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2903 (https://nvd.nist.gov/vuln/detail/CVE-2020-2903):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Connection Handling). Supported versions that are affected are
  8.0.19 and prior. Easily exploitable vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2780 (https://nvd.nist.gov/vuln/detail/CVE-2020-2780):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: DML). Supported versions that are affected are 5.6.47 and prior,
  5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability
  allows low privileged attacker with network access via multiple protocols to
  compromise MySQL Server. Successful attacks of this vulnerability can result
  in unauthorized ability to cause a hang or frequently repeatable crash
  (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability
  impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2926 (https://nvd.nist.gov/vuln/detail/CVE-2020-2926):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Group Replication GCS). Supported versions that are affected are
  8.0.19 and prior. Difficult to exploit vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2921 (https://nvd.nist.gov/vuln/detail/CVE-2020-2921):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Group Replication Plugin). Supported versions that are affected are
  8.0.19 and prior. Difficult to exploit vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2896 (https://nvd.nist.gov/vuln/detail/CVE-2020-2896):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Information Schema). Supported versions that are affected are 8.0.19
  and prior. Easily exploitable vulnerability allows high privileged attacker
  with network access via multiple protocols to compromise MySQL Server.
  Successful attacks of this vulnerability can result in unauthorized ability
  to cause a hang or frequently repeatable crash (complete DOS) of MySQL
  Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2804 (https://nvd.nist.gov/vuln/detail/CVE-2020-2804):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Memcached). Supported versions that are affected are 5.6.47 and
  prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit
  vulnerability allows unauthenticated attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 5.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2765 (https://nvd.nist.gov/vuln/detail/CVE-2020-2765):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 5.7.29 and
  prior and 8.0.19 and prior. Easily exploitable vulnerability allows high
  privileged attacker with network access via multiple protocols to compromise
  MySQL Server. Successful attacks of this vulnerability can result in
  unauthorized ability to cause a hang or frequently repeatable crash
  (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability
  impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2892 (https://nvd.nist.gov/vuln/detail/CVE-2020-2892):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2897 (https://nvd.nist.gov/vuln/detail/CVE-2020-2897):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2901 (https://nvd.nist.gov/vuln/detail/CVE-2020-2901):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2904 (https://nvd.nist.gov/vuln/detail/CVE-2020-2904):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2923 (https://nvd.nist.gov/vuln/detail/CVE-2020-2923):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2924 (https://nvd.nist.gov/vuln/detail/CVE-2020-2924):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2928 (https://nvd.nist.gov/vuln/detail/CVE-2020-2928):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2925 (https://nvd.nist.gov/vuln/detail/CVE-2020-2925):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: PS). Supported versions that are affected are 8.0.19 and prior.
  Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2930 (https://nvd.nist.gov/vuln/detail/CVE-2020-2930):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Parser). Supported versions that are affected are 8.0.19 and prior.
  Difficult to exploit vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2763 (https://nvd.nist.gov/vuln/detail/CVE-2020-2763):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Replication). Supported versions that are affected are 5.6.47 and
  prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable
  vulnerability allows high privileged attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2759 (https://nvd.nist.gov/vuln/detail/CVE-2020-2759):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Replication). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2812 (https://nvd.nist.gov/vuln/detail/CVE-2020-2812):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Stored Procedure). Supported versions that are affected are 5.6.47
  and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable
  vulnerability allows high privileged attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Comment 1 Larry the Git Cow gentoo-dev 2020-04-30 20:45:24 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=354298f979e834d7a95caf530cf61eb580e4b0e6

commit 354298f979e834d7a95caf530cf61eb580e4b0e6
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-04-30 19:07:18 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-04-30 20:44:55 +0000

    dev-db/mysql: bump to v8.0.20
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-8.0.20.ebuild | 1108 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1110 insertions(+)
Comment 2 Larry the Git Cow gentoo-dev 2020-04-30 21:43:18 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1d17c28118c0eb467d78c2d7a7432e675cadcbd4

commit 1d17c28118c0eb467d78c2d7a7432e675cadcbd4
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-04-30 21:25:21 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-04-30 21:42:16 +0000

    dev-db/mysql: bump to v5.7.30
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |   2 +
 dev-db/mysql/mysql-5.7.30.ebuild | 975 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 977 insertions(+)
Comment 3 Thomas Deutschmann (RETIRED) gentoo-dev 2020-05-02 12:14:05 UTC
@ arches,

please test and mark stable:

=dev-db/mysql-5.7.30 amd64 arm arm64 ia64 ppc ppc64 x86
=dev-db/mysql-8.0.20 amd64 arm arm64 ia64 ppc ppc64 x86


# Official test instructions:
ulimit -n 16500 && \
USE='perl server' \
FEATURES='test userpriv -usersandbox' \
ebuild mysql-X.X.XX.ebuild \
digest clean package

Note: <mysql-8 will need USE=latin1 for tests!
Comment 4 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-05-04 20:00:33 UTC
arm64 stable
Comment 5 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2020-05-10 10:10:42 UTC
amd64 stable
Comment 6 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2020-05-10 10:11:09 UTC
arm stable
Comment 7 Thomas Deutschmann (RETIRED) gentoo-dev 2020-05-14 21:30:11 UTC
x86 stable
Comment 8 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-06-04 17:12:37 UTC
@ppc, @ppc64: ping
Comment 9 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2020-07-25 23:38:14 UTC
PPC, PPC64: ping
Comment 10 NATTkA bot gentoo-dev 2020-07-26 00:13:16 UTC
Unable to check for sanity:

> no match for package: dev-db/mysql-5.7.30
Comment 11 Larry the Git Cow gentoo-dev 2020-07-26 01:46:18 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=331adc8a03e7e38a95d7ff3e0ec54d0b849401c7

commit 331adc8a03e7e38a95d7ff3e0ec54d0b849401c7
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-07-26 01:12:01 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-07-26 01:46:04 +0000

    dev-db/mysql: bump to v5.7.31
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-3.0.0, Repoman-2.3.23
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-5.7.31.ebuild | 1219 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1221 insertions(+)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=371586424f5947781143a610b063cbb10e7b7021

commit 371586424f5947781143a610b063cbb10e7b7021
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-07-26 00:22:40 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-07-26 01:46:03 +0000

    dev-db/mysql: bump to v8.0.21
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-3.0.0, Repoman-2.3.23
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-8.0.21.ebuild | 1165 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1167 insertions(+)
Comment 12 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-08-08 03:55:42 UTC
GLSA vote: no.

ppc, ppc64: ping
Comment 13 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2020-09-20 16:04:45 UTC
ppc64, ppc: Ping
Comment 14 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2020-11-10 18:05:47 UTC
ppc64, ppc: ping
Comment 15 Thomas Deutschmann (RETIRED) gentoo-dev 2020-11-10 22:10:32 UTC
They probably cannot, see bug 711940.
Comment 16 Thomas Deutschmann (RETIRED) gentoo-dev 2021-05-24 18:03:20 UTC
Added to an existing GLSA request.
Comment 17 GLSAMaker/CVETool Bot gentoo-dev 2021-05-26 09:52:22 UTC
This issue was resolved and addressed in
 GLSA 202105-27 at https://security.gentoo.org/glsa/202105-27
by GLSA coordinator Thomas Deutschmann (whissi).