MySQL非常嚴重漏洞-建議盡快更新2019年7月Patch!
2019年7月MySQL的重要告警訊息!!
請參考下面官網網址說明
The version of MySQL running on the remote
host is 5.7.x prior to 5.7.27. It is, therefore,
affected by multiple vulnerabilities, including three of the top
vulnerabilities below, as noted in the July 2019 Critical Patch Update
advisory:
- An unspecified vulnerability in the 'Server: Packaging (cURL)' subcomponent could allow an unauthenticated attacker to gain complete control of an affected instance of MySQL Server. (CVE-2019-3822)
- An unspecified vulnerability in the 'Server: Parser' subcomponent could allow a high privileged attacker to cause the server to hang or to, via a frequently repeatable crash, cause a complete denial of service.
(CVE-2019-2805)
- An unspecified vulnerability in the 'Server: XML' subcomponent could allow a high privileged attacker to cause the server to hang or to, via a frequently repeatable crash, cause a complete denial of service.
(CVE-2019-2740)
- An unspecified vulnerability in the 'Server: Packaging (cURL)' subcomponent could allow an unauthenticated attacker to gain complete control of an affected instance of MySQL Server. (CVE-2019-3822)
- An unspecified vulnerability in the 'Server: Parser' subcomponent could allow a high privileged attacker to cause the server to hang or to, via a frequently repeatable crash, cause a complete denial of service.
(CVE-2019-2805)
- An unspecified vulnerability in the 'Server: XML' subcomponent could allow a high privileged attacker to cause the server to hang or to, via a frequently repeatable crash, cause a complete denial of service.
(CVE-2019-2740)
建議盡快更新MySQL 相關Patch!!
留言
張貼留言