OESA-2026-2156
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-2156
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2026-2156.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2026-2156
- Upstream
- Published
- 2026-05-03T09:56:41Z
- Modified
- 2026-05-03T10:17:03.006100Z
- Summary
- mysql security update
- Details
-
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. %if
Security Fix(es):
Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Shell executes to compromise MySQL Shell. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Shell. CVSS 3.1 Base Score 5.0 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H).(CVE-2026-34317)
Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Shell executes to compromise MySQL Shell. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Shell. CVSS 3.1 Base Score 5.0 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H).(CVE-2026-34319)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:24.03-LTS-SP1 / mysql
Package
- Name
- mysql
- Purl
- pkg:rpm/openEuler/mysql&distro=openEuler-24.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed8.0.46-1.oe2403sp1
Ecosystem specific
{
"src": [
"mysql-8.0.46-1.oe2403sp1.src.rpm"
],
"aarch64": [
"mysql-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-common-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-config-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-debuginfo-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-debugsource-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-devel-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-errmsg-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-help-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-libs-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-server-8.0.46-1.oe2403sp1.aarch64.rpm",
"mysql-test-8.0.46-1.oe2403sp1.aarch64.rpm"
],
"x86_64": [
"mysql-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-common-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-config-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-debuginfo-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-debugsource-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-devel-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-errmsg-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-help-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-libs-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-server-8.0.46-1.oe2403sp1.x86_64.rpm",
"mysql-test-8.0.46-1.oe2403sp1.x86_64.rpm"
]
}