717628 – (CVE-2020-2570, CVE-2020-2572, CVE-2020-2573, CVE-2020-2577, CVE-2020-2579, CVE-2020-2580, CVE-2020-2584, CVE-2020-2588, CVE-2020-2589, CVE-2020-2627, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2694, CVE-2020-2759, CVE-2020-2761, CVE-2020-2762, CVE-2020-2763, CVE-2020-2765, CVE-2020-2768, CVE-2020-2770, CVE-2020-2774, CVE-2020-2779, CVE-2020-2780, CVE-2020-2790, CVE-2020-2804, CVE-2020-2806, CVE-2020-2853, CVE-2020-2875, CVE-2020-2892, CVE-2020-2893, CVE-2020-2895, CVE-2020-2896, CVE-2020-2897, CVE-2020-2898, CVE-2020-2901, CVE-2020-2903, CVE-2020-2904, CVE-2020-2921, CVE-2020-2922, CVE-2020-2923, CVE-2020-2924, CVE-2020-2925, CVE-2020-2926, CVE-2020-2928, CVE-2020-2930, CVE-2020-2933, CVE-2020-2934) <dev-db/mysql-{5.7.30,8.0.20}: Multiple vulnerabilities (CPU April 2020)

Bug 717628 (CVE-2020-2570, CVE-2020-2572, CVE-2020-2573, CVE-2020-2577, CVE-2020-2579, CVE-2020-2580, CVE-2020-2584, CVE-2020-2588, CVE-2020-2589, CVE-2020-2627, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2694, CVE-2020-2759, CVE-2020-2761, CVE-2020-2762, CVE-2020-2763, CVE-2020-2765, CVE-2020-2768, CVE-2020-2770, CVE-2020-2774, CVE-2020-2779, CVE-2020-2780, CVE-2020-2790, CVE-2020-2804, CVE-2020-2806, CVE-2020-2853, CVE-2020-2875, CVE-2020-2892, CVE-2020-2893, CVE-2020-2895, CVE-2020-2896, CVE-2020-2897, CVE-2020-2898, CVE-2020-2901, CVE-2020-2903, CVE-2020-2904, CVE-2020-2921, CVE-2020-2922, CVE-2020-2923, CVE-2020-2924, CVE-2020-2925, CVE-2020-2926, CVE-2020-2928, CVE-2020-2930, CVE-2020-2933, CVE-2020-2934) - <dev-db/mysql-{5.7.30,8.0.20}: Multiple vulnerabilities (CPU April 2020)

Summary: <dev-db/mysql-{5.7.30,8.0.20}: Multiple vulnerabilities (CPU April 2020)

Status:	RESOLVED FIXED

Alias:	CVE-2020-2570, CVE-2020-2572, CVE-2020-2573, CVE-2020-2577, CVE-2020-2579, CVE-2020-2580, CVE-2020-2584, CVE-2020-2588, CVE-2020-2589, CVE-2020-2627, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686, CVE-2020-2694, CVE-2020-2759, CVE-2020-2761, CVE-2020-2762, CVE-2020-2763, CVE-2020-2765, CVE-2020-2768, CVE-2020-2770, CVE-2020-2774, CVE-2020-2779, CVE-2020-2780, CVE-2020-2790, CVE-2020-2804, CVE-2020-2806, CVE-2020-2853, CVE-2020-2875, CVE-2020-2892, CVE-2020-2893, CVE-2020-2895, CVE-2020-2896, CVE-2020-2897, CVE-2020-2898, CVE-2020-2901, CVE-2020-2903, CVE-2020-2904, CVE-2020-2921, CVE-2020-2922, CVE-2020-2923, CVE-2020-2924, CVE-2020-2925, CVE-2020-2926, CVE-2020-2928, CVE-2020-2930, CVE-2020-2933, CVE-2020-2934

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor
Assignee:	Gentoo Security

URL:
Whiteboard:	B3 [glsa+ cve]
Keywords:

Depends on:
Blocks:	699876 CVE-2020-2752, CVE-2020-2760, CVE-2020-2812, CVE-2020-2814
	Show dependency tree

Reported:	2020-04-15 21:38 UTC by GLSAMaker/CVETool Bot
Modified:	2021-05-26 09:52 UTC (History)
CC List:	4 users (show)

See Also:
Package list:	dev-db/mysql-5.7.30-r1 dev-db/mysql-8.0.20-r1
Runtime testing required:	---

Flags:	nattka: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2020-04-15 21:38:54 UTC

CVE-2020-2934 (https://nvd.nist.gov/vuln/detail/CVE-2020-2934):
  Vulnerability in the MySQL Connectors product of Oracle MySQL (component:
  Connector/J). Supported versions that are affected are 8.0.19 and prior and
  5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated
  attacker with network access via multiple protocols to compromise MySQL
  Connectors. Successful attacks require human interaction from a person other
  than the attacker. Successful attacks of this vulnerability can result in
  unauthorized update, insert or delete access to some of MySQL Connectors
  accessible data as well as unauthorized read access to a subset of MySQL
  Connectors accessible data and unauthorized ability to cause a partial
  denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 5.0
  (Confidentiality, Integrity and Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L).

CVE-2020-2760 (https://nvd.nist.gov/vuln/detail/CVE-2020-2760):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 5.7.29 and prior and
  8.0.19 and prior. Easily exploitable vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server as well as unauthorized update, insert or delete access to some
  of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and
  Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).

CVE-2020-2762 (https://nvd.nist.gov/vuln/detail/CVE-2020-2762):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2893 (https://nvd.nist.gov/vuln/detail/CVE-2020-2893):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2895 (https://nvd.nist.gov/vuln/detail/CVE-2020-2895):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2898 (https://nvd.nist.gov/vuln/detail/CVE-2020-2898):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Charsets). The supported version that is affected is 8.0.19. Easily
  exploitable vulnerability allows high privileged attacker with network
  access via multiple protocols to compromise MySQL Server. Successful attacks
  of this vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2903 (https://nvd.nist.gov/vuln/detail/CVE-2020-2903):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Connection Handling). Supported versions that are affected are
  8.0.19 and prior. Easily exploitable vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2780 (https://nvd.nist.gov/vuln/detail/CVE-2020-2780):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: DML). Supported versions that are affected are 5.6.47 and prior,
  5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability
  allows low privileged attacker with network access via multiple protocols to
  compromise MySQL Server. Successful attacks of this vulnerability can result
  in unauthorized ability to cause a hang or frequently repeatable crash
  (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability
  impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2926 (https://nvd.nist.gov/vuln/detail/CVE-2020-2926):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Group Replication GCS). Supported versions that are affected are
  8.0.19 and prior. Difficult to exploit vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2921 (https://nvd.nist.gov/vuln/detail/CVE-2020-2921):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Group Replication Plugin). Supported versions that are affected are
  8.0.19 and prior. Difficult to exploit vulnerability allows high privileged
  attacker with network access via multiple protocols to compromise MySQL
  Server. Successful attacks of this vulnerability can result in unauthorized
  ability to cause a hang or frequently repeatable crash (complete DOS) of
  MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2896 (https://nvd.nist.gov/vuln/detail/CVE-2020-2896):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Information Schema). Supported versions that are affected are 8.0.19
  and prior. Easily exploitable vulnerability allows high privileged attacker
  with network access via multiple protocols to compromise MySQL Server.
  Successful attacks of this vulnerability can result in unauthorized ability
  to cause a hang or frequently repeatable crash (complete DOS) of MySQL
  Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2804 (https://nvd.nist.gov/vuln/detail/CVE-2020-2804):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Memcached). Supported versions that are affected are 5.6.47 and
  prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit
  vulnerability allows unauthenticated attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 5.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2765 (https://nvd.nist.gov/vuln/detail/CVE-2020-2765):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 5.7.29 and
  prior and 8.0.19 and prior. Easily exploitable vulnerability allows high
  privileged attacker with network access via multiple protocols to compromise
  MySQL Server. Successful attacks of this vulnerability can result in
  unauthorized ability to cause a hang or frequently repeatable crash
  (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability
  impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2892 (https://nvd.nist.gov/vuln/detail/CVE-2020-2892):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2897 (https://nvd.nist.gov/vuln/detail/CVE-2020-2897):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2901 (https://nvd.nist.gov/vuln/detail/CVE-2020-2901):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2904 (https://nvd.nist.gov/vuln/detail/CVE-2020-2904):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2923 (https://nvd.nist.gov/vuln/detail/CVE-2020-2923):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2924 (https://nvd.nist.gov/vuln/detail/CVE-2020-2924):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2928 (https://nvd.nist.gov/vuln/detail/CVE-2020-2928):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Optimizer). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2925 (https://nvd.nist.gov/vuln/detail/CVE-2020-2925):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: PS). Supported versions that are affected are 8.0.19 and prior.
  Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2930 (https://nvd.nist.gov/vuln/detail/CVE-2020-2930):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Parser). Supported versions that are affected are 8.0.19 and prior.
  Difficult to exploit vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.4 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2763 (https://nvd.nist.gov/vuln/detail/CVE-2020-2763):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Replication). Supported versions that are affected are 5.6.47 and
  prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable
  vulnerability allows high privileged attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2759 (https://nvd.nist.gov/vuln/detail/CVE-2020-2759):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Replication). Supported versions that are affected are 8.0.19 and
  prior. Easily exploitable vulnerability allows high privileged attacker with
  network access via multiple protocols to compromise MySQL Server. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0
  Base Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2020-2812 (https://nvd.nist.gov/vuln/detail/CVE-2020-2812):
  Vulnerability in the MySQL Server product of Oracle MySQL (component:
  Server: Stored Procedure). Supported versions that are affected are 5.6.47
  and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable
  vulnerability allows high privileged attacker with network access via
  multiple protocols to compromise MySQL Server. Successful attacks of this
  vulnerability can result in unauthorized ability to cause a hang or
  frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base
  Score 4.9 (Availability impacts). CVSS Vector:
  (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Comment 1 Larry the Git Cow gentoo-dev

2020-04-30 20:45:24 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=354298f979e834d7a95caf530cf61eb580e4b0e6

commit 354298f979e834d7a95caf530cf61eb580e4b0e6
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-04-30 19:07:18 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-04-30 20:44:55 +0000

    dev-db/mysql: bump to v8.0.20
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-8.0.20.ebuild | 1108 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1110 insertions(+)

Comment 2 Larry the Git Cow gentoo-dev

2020-04-30 21:43:18 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1d17c28118c0eb467d78c2d7a7432e675cadcbd4

commit 1d17c28118c0eb467d78c2d7a7432e675cadcbd4
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-04-30 21:25:21 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-04-30 21:42:16 +0000

    dev-db/mysql: bump to v5.7.30
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |   2 +
 dev-db/mysql/mysql-5.7.30.ebuild | 975 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 977 insertions(+)

Comment 3 Thomas Deutschmann (RETIRED) gentoo-dev

2020-05-02 12:14:05 UTC

@ arches,

please test and mark stable:

=dev-db/mysql-5.7.30 amd64 arm arm64 ia64 ppc ppc64 x86
=dev-db/mysql-8.0.20 amd64 arm arm64 ia64 ppc ppc64 x86


# Official test instructions:
ulimit -n 16500 && \
USE='perl server' \
FEATURES='test userpriv -usersandbox' \
ebuild mysql-X.X.XX.ebuild \
digest clean package

Note: <mysql-8 will need USE=latin1 for tests!

Comment 4 Sam James archtester

2020-05-04 20:00:33 UTC

arm64 stable

Comment 5 Mikle Kolyada (RETIRED) archtester

2020-05-10 10:10:42 UTC

amd64 stable

Comment 6 Mikle Kolyada (RETIRED) archtester

2020-05-10 10:11:09 UTC

arm stable

Comment 7 Thomas Deutschmann (RETIRED) gentoo-dev

2020-05-14 21:30:11 UTC

x86 stable

Comment 8 Sam James archtester

2020-06-04 17:12:37 UTC

@ppc, @ppc64: ping

Comment 9 John Helmert III archtester

2020-07-25 23:38:14 UTC

PPC, PPC64: ping

Comment 10 NATTkA bot gentoo-dev

2020-07-26 00:13:16 UTC

Unable to check for sanity:

> no match for package: dev-db/mysql-5.7.30

Comment 11 Larry the Git Cow gentoo-dev

2020-07-26 01:46:18 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=331adc8a03e7e38a95d7ff3e0ec54d0b849401c7

commit 331adc8a03e7e38a95d7ff3e0ec54d0b849401c7
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-07-26 01:12:01 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-07-26 01:46:04 +0000

    dev-db/mysql: bump to v5.7.31
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-3.0.0, Repoman-2.3.23
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-5.7.31.ebuild | 1219 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1221 insertions(+)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=371586424f5947781143a610b063cbb10e7b7021

commit 371586424f5947781143a610b063cbb10e7b7021
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2020-07-26 00:22:40 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2020-07-26 01:46:03 +0000

    dev-db/mysql: bump to v8.0.21
    
    Bug: https://bugs.gentoo.org/717628
    Package-Manager: Portage-3.0.0, Repoman-2.3.23
    Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>

 dev-db/mysql/Manifest            |    2 +
 dev-db/mysql/mysql-8.0.21.ebuild | 1165 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 1167 insertions(+)

Comment 12 Sam James archtester

2020-08-08 03:55:42 UTC

GLSA vote: no.

ppc, ppc64: ping

Comment 13 John Helmert III archtester

2020-09-20 16:04:45 UTC

ppc64, ppc: Ping

Comment 14 John Helmert III archtester

2020-11-10 18:05:47 UTC

ppc64, ppc: ping

Comment 15 Thomas Deutschmann (RETIRED) gentoo-dev

2020-11-10 22:10:32 UTC

They probably cannot, see bug 711940.

Comment 16 Thomas Deutschmann (RETIRED) gentoo-dev

2021-05-24 18:03:20 UTC

Added to an existing GLSA request.

Comment 17 GLSAMaker/CVETool Bot gentoo-dev

2021-05-26 09:52:22 UTC

This issue was resolved and addressed in
 GLSA 202105-27 at https://security.gentoo.org/glsa/202105-27
by GLSA coordinator Thomas Deutschmann (whissi).