UBUNTU-CVE-2020-2584
- Source
- https://ubuntu.com/security/CVE-2020-2584
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-2584.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2020-2584
- Upstream
- Downstream
- Related
- Published
- 2020-01-15T17:15:00Z
- Modified
- 2025-10-24T04:48:15Z
- Severity
-
- 4.4 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- 4.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).
- References
Affected packages
Ubuntu:14.04:LTS
mysql-5.5
Package
- Name
- mysql-5.5
- Purl
- pkg:deb/ubuntu/mysql-5.5@5.5.62-0ubuntu0.14.04.1?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
5.*
5.5.32-0ubuntu7
5.5.34-0ubuntu1
5.5.34-0ubuntu2
5.5.35-0ubuntu1
5.5.35+dfsg-1ubuntu1
5.5.37-0ubuntu0.14.04.1
5.5.38-0ubuntu0.14.04.1
5.5.40-0ubuntu0.14.04.1
5.5.41-0ubuntu0.14.04.1
5.5.43-0ubuntu0.14.04.1
5.5.44-0ubuntu0.14.04.1
5.5.46-0ubuntu0.14.04.2
5.5.47-0ubuntu0.14.04.1
5.5.49-0ubuntu0.14.04.1
5.5.50-0ubuntu0.14.04.1
5.5.52-0ubuntu0.14.04.1
5.5.53-0ubuntu0.14.04.1
5.5.54-0ubuntu0.14.04.1
5.5.55-0ubuntu0.14.04.1
5.5.57-0ubuntu0.14.04.1
5.5.58-0ubuntu0.14.04.1
5.5.59-0ubuntu0.14.04.1
5.5.60-0ubuntu0.14.04.1
5.5.61-0ubuntu0.14.04.1
5.5.62-0ubuntu0.14.04.1
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "libmysqlclient-dev"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "libmysqlclient18"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "libmysqld-dev"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "libmysqld-pic"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-client"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-client-5.5"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-client-core-5.5"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-common"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-server"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-server-5.5"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-server-core-5.5"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-source-5.5"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-testsuite"
},
{
"binary_version": "5.5.62-0ubuntu0.14.04.1",
"binary_name": "mysql-testsuite-5.5"
}
]
}Ubuntu:16.04:LTS
mysql-5.7
Package
- Name
- mysql-5.7
- Purl
- pkg:deb/ubuntu/mysql-5.7@5.7.29-0ubuntu0.16.04.1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.7.29-0ubuntu0.16.04.1
Affected versions
5.*
5.7.11-0ubuntu4
5.7.11-0ubuntu5
5.7.11-0ubuntu6
5.7.12-0ubuntu1
5.7.12-0ubuntu1.1
5.7.13-0ubuntu0.16.04.2
5.7.15-0ubuntu0.16.04.1
5.7.16-0ubuntu0.16.04.1
5.7.17-0ubuntu0.16.04.1
5.7.17-0ubuntu0.16.04.2
5.7.18-0ubuntu0.16.04.1
5.7.19-0ubuntu0.16.04.1
5.7.20-0ubuntu0.16.04.1
5.7.21-0ubuntu0.16.04.1
5.7.22-0ubuntu0.16.04.1
5.7.23-0ubuntu0.16.04.1
5.7.24-0ubuntu0.16.04.1
5.7.25-0ubuntu0.16.04.2
5.7.26-0ubuntu0.16.04.1
5.7.27-0ubuntu0.16.04.1
5.7.28-0ubuntu0.16.04.2
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "libmysqlclient-dev"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "libmysqlclient20"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "libmysqld-dev"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-client"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-client-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-client-core-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-common"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-server"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-server-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-server-core-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-source-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-testsuite"
},
{
"binary_version": "5.7.29-0ubuntu0.16.04.1",
"binary_name": "mysql-testsuite-5.7"
}
],
"availability": "No subscription required"
}percona-server-5.6
Package
- Name
- percona-server-5.6
- Purl
- pkg:deb/ubuntu/percona-server-5.6@5.6.22-rel71.0-0ubuntu4.1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.6.22-rel71.0-0ubuntu4.1",
"binary_name": "percona-server-server"
},
{
"binary_version": "5.6.22-rel71.0-0ubuntu4.1",
"binary_name": "percona-server-server-5.6"
},
{
"binary_version": "5.6.22-rel71.0-0ubuntu4.1",
"binary_name": "percona-server-source-5.6"
},
{
"binary_version": "5.6.22-rel71.0-0ubuntu4.1",
"binary_name": "percona-server-test"
},
{
"binary_version": "5.6.22-rel71.0-0ubuntu4.1",
"binary_name": "percona-server-test-5.6"
}
]
}percona-xtradb-cluster-5.6
Package
- Name
- percona-xtradb-cluster-5.6
- Purl
- pkg:deb/ubuntu/percona-xtradb-cluster-5.6@5.6.37-26.21-0ubuntu0.16.04.2?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
5.*
5.6.21-25.8-0ubuntu2
5.6.21-25.8-0ubuntu3
5.6.21-25.8-0ubuntu3.1
5.6.21-25.8-0ubuntu3.2
5.6.34-26.19-0ubuntu0.16.04.1
5.6.34-26.19-0ubuntu0.16.04.2
5.6.37-26.21-0ubuntu0.16.04.1
5.6.37-26.21-0ubuntu0.16.04.2
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.6.37-26.21-0ubuntu0.16.04.2",
"binary_name": "percona-xtradb-cluster-server"
},
{
"binary_version": "5.6.37-26.21-0ubuntu0.16.04.2",
"binary_name": "percona-xtradb-cluster-server-5.6"
},
{
"binary_version": "5.6.37-26.21-0ubuntu0.16.04.2",
"binary_name": "percona-xtradb-cluster-source-5.6"
}
]
}Ubuntu:18.04:LTS
mysql-5.7
Package
- Name
- mysql-5.7
- Purl
- pkg:deb/ubuntu/mysql-5.7@5.7.29-0ubuntu0.18.04.1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.7.29-0ubuntu0.18.04.1
Affected versions
5.*
5.7.19-0ubuntu1
5.7.20-0ubuntu0.17.10.1
5.7.20-1ubuntu1
5.7.21-1ubuntu1
5.7.22-0ubuntu18.04.1
5.7.23-0ubuntu0.18.04.1
5.7.24-0ubuntu0.18.04.1
5.7.25-0ubuntu0.18.04.2
5.7.26-0ubuntu0.18.04.1
5.7.27-0ubuntu0.18.04.1
5.7.28-0ubuntu0.18.04.4
Ecosystem specific
{
"binaries": [
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "libmysqlclient-dev"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "libmysqlclient20"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "libmysqld-dev"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-client"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-client-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-client-core-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-server"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-server-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-server-core-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-source-5.7"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-testsuite"
},
{
"binary_version": "5.7.29-0ubuntu0.18.04.1",
"binary_name": "mysql-testsuite-5.7"
}
],
"availability": "No subscription required"
}Ubuntu:20.04:LTS
mysql-8.0
Package
- Name
- mysql-8.0
- Purl
- pkg:deb/ubuntu/mysql-8.0@8.0.19-0ubuntu2?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed8.0.19-0ubuntu2
Affected versions
8.*
8.0.17-0ubuntu2
8.0.17-0ubuntu3
8.0.18-0ubuntu3
8.0.18-0ubuntu4
8.0.18-0ubuntu5
Ecosystem specific
{
"binaries": [
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "libmysqlclient-dev"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "libmysqlclient21"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-client"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-client-8.0"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-client-core-8.0"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-router"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-server"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-server-8.0"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-server-core-8.0"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-source-8.0"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-testsuite"
},
{
"binary_version": "8.0.19-0ubuntu2",
"binary_name": "mysql-testsuite-8.0"
}
],
"availability": "No subscription required"
}