PT-2026-6542

Name of the Vulnerable Software and Affected Versions MySQL versions 8.0.45 through 8.0.45-0ubuntu0.24.04.1 MySQL versions 8.4.8 MySQL versions prior to 8.0.45-0ubuntu0.24.04.1 MySQL versions prior to 8.4.8 Description Multiple security issues were discovered in MySQL. Updates to new upstream MyS...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16627)

Oracle MySQL is an open source relational database management system from Oracle. A security vulnerability exists in Oracle MySQL for MySQL Server and MySQL Cluster, which can be exploited by attackers to cause a denial of service...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16630)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server versions 9.0.0 through 9.5.0, which can be exploited by attackers to cause a denial ...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16629)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability in Oracle MySQL's MySQL Server versions 8.0.0 through 8.0.44, 8.4.0 through 8.4.7, and 9.0.0 through 9.5.0 can be exploited ...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16631)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server versions 9.0.0 through 9.5.0, which can be exploited by attackers to cause a denial ...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16628)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server versions 9.0.0 through 9.5.0, which can be exploited by attackers to cause a partial...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16681)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. Oracle MySQL has a security vulnerability in MySQL Server that can be exploited by attackers to cause a denial of service...

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16638)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server versions 8.0.0 through 8.0.44, 8.4.0 through 8.4.7, and 9.0.0 through 9.5.0, which c...

Oracle MySQL Server 8.0.x < 8.0.45 (January 2026 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging. Supported versions that are affected are 8.0.0-8.0.44,...

Oracle MySQL Server 9.x.x < 9.6.0 (January 2026 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging. Supported versions that are affected are 8.0.0-8.0.44,...

Oracle MySQL Server 8.4.x < 8.4.8 (January 2026 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Docker Images SQLite. Supported versions that are affected are...

FreeBSD : MySQL -- Multiple vulnerabilities (ab01cb11-f911-11f0-b194-8447094a420f)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ab01cb11-f911-11f0-b194-8447094a420f advisory. Oracle reports: Oracle reports multiple vulnerabilities in its MySQL server products. Tenable...

AZL-76481 CVE-2026-0994 affecting package mysql for versions less than 8.0.45-2

A denial-of-service DoS vulnerability exists in google.protobuf.jsonformat.ParseDict in Python, where the maxrecursiondepth limit can be bypassed when parsing nested google.protobuf.Any messages. Due to missing recursion depth accounting inside the internal Any-handling logic, an attacker can...

OESA-2026-1196 mysql security update

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. %if Security Fixes:...

[SECURITY] Fedora 42 Update: mariadb11.8-11.8.5-1.fc42

MariaDB is a community developed fork from MySQL - a multi-user, multi-thread ed SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs...

Oracle MySQL Cluster 9.x < 9.6.0 (January 2026 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 and April 2026 CPU advisories. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are...

Oracle MySQL Cluster 8.0.x < 8.0.45 (January 2026 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 and April 2026 CPU advisories. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are...

Oracle MySQL Connectors (January 2026 CPU)

The 9.5.0 versions of MySQL Connectors installed on the remote host are affected by a vulnerability as referenced in the January 2026 CPU advisory. - Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/C++ OpenSSL. Supported versions that are affected are 9.0.0-9.5....

Oracle MySQL Cluster 8.4.x < 8.4.8 (January 2026 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 and April 2026 CPU advisories. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are...

Azure Linux 3.0 Security Update: mysql (CVE-2012-2677)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2012-2677 advisory. - Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier...