MYSQL Vulnerability

Document ID : KB000095360
Last Modified Date : 10/05/2018
Show Technical Document Details
Issue:
The list of CVE provided are as follows:

CVE-2018-2761
CVE-2018-2771
CVE-2018-2773
CVE-2018-2817
CVE-2018-2781
CVE-2018-2819
CVE-2018-2818
CVE-2018-2813
CVE-2018-2755

Publish Date for all CVE in Red Hat CVE Database is 16 Apr 2018. Vulnerabilities are all in the MySQL Server component of Oracle MySQL(different sub components). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior.

None of these CVE are listed in our most recent Platform Update(cve-info-v9.X-RHEL-x86_64-2018-04-24.txt).

All of these CVE are covered in the following RedHat Security Advisory issued 2018-04-26

RHSA-2018:1254 - Security Advisory
https://access.redhat.com/errata/RHSA-2018:1254
Resolution:
These CVEs will be resolved with our next monthly platform update patch, expected to be released on May 24th 2018 under CA API Management Solutions and Patches page. Here is a link to that page, for your reference:

CA API Management Solutions & Patches
https://support.ca.com/us/product-content/recommended-reading/technical-document-index/ca-api-management-solutions-and-patches.html