UBUNTU-CVE-2026-21968 | Mondoo Vulnerability Intelligence

UBUNTU-CVE-2026-21968

MEDIUM6.5

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulne

Published Jan 20, 2026

Modified 2 months ago

Fix available

Details

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

Affected Packages(15 packages)

mysql-5.5

Ubuntu 14.04 LTS

Affected versions:

5.5.32-0ubuntu75.5.34-0ubuntu15.5.34-0ubuntu25.5.35+dfsg-1ubuntu15.5.35-0ubuntu15.5.37-0ubuntu0.14.04.15.5.38-0ubuntu0.14.04.15.5.40-0ubuntu0.14.04.15.5.41-0ubuntu0.14.04.15.5.43-0ubuntu0.14.04.1+15 more

mariadb-10.0

Ubuntu 16.04 LTS

Affected versions:

10.0.20-0ubuntu0.15.04.110.0.22-0ubuntu110.0.23-110.0.23-210.0.24-710.0.25-0ubuntu0.16.04.110.0.27-0ubuntu0.16.04.110.0.28-0ubuntu0.16.04.110.0.29-0ubuntu0.16.04.110.0.31-0ubuntu0.16.04.2+4 more

percona-server-5.6

Ubuntu 16.04 LTS

Affected versions:

5.6.22-rel71.0-0ubuntu25.6.22-rel71.0-0ubuntu45.6.22-rel71.0-0ubuntu4.1

percona-xtradb-cluster-5.6

Ubuntu 16.04 LTS

Affected versions:

5.6.21-25.8-0ubuntu25.6.21-25.8-0ubuntu35.6.21-25.8-0ubuntu3.15.6.21-25.8-0ubuntu3.25.6.34-26.19-0ubuntu0.16.04.15.6.34-26.19-0ubuntu0.16.04.25.6.37-26.21-0ubuntu0.16.04.15.6.37-26.21-0ubuntu0.16.04.2

mariadb-10.1

Ubuntu 18.04 LTS

Affected versions:

10.1.25-11:10.1.29-61:10.1.34-0ubuntu0.18.04.11:10.1.38-0ubuntu0.18.04.11:10.1.38-0ubuntu0.18.04.21:10.1.40-0ubuntu0.18.04.11:10.1.41-0ubuntu0.18.04.11:10.1.43-0ubuntu0.18.04.11:10.1.44-0ubuntu0.18.04.11:10.1.47-0ubuntu0.18.04.1+1 more

mariadb-10.3

Ubuntu 20.04 LTS

Affected versions:

1:10.3.17-11:10.3.18-11:10.3.19-11:10.3.21-21:10.3.22-11:10.3.22-1ubuntu11:10.3.25-0ubuntu0.20.04.11:10.3.29-0ubuntu0.20.04.11:10.3.30-0ubuntu0.20.04.11:10.3.31-0ubuntu0.20.04.1+5 more

mariadb-10.6

Ubuntu 22.04 LTS

Affected versions:

1:10.6.11-0ubuntu0.22.04.11:10.6.12-0ubuntu0.22.04.11:10.6.16-0ubuntu0.22.04.11:10.6.18-0ubuntu0.22.04.11:10.6.21-0ubuntu0.22.04.21:10.6.22-0ubuntu0.22.04.11:10.6.23-0ubuntu0.22.04.11:10.6.7-2ubuntu11:10.6.7-2ubuntu1.1

mysql-8.0

Ubuntu 22.04 LTS

Fixed in:

8.0.45-0ubuntu0.22.04.1

mariadb

Ubuntu 24.04 LTS

Affected versions:

1:10.11.11-0ubuntu0.24.04.21:10.11.13-0ubuntu0.24.04.11:10.11.14-0ubuntu0.24.04.11:10.11.4-11:10.11.5-31:10.11.6-11:10.11.6-21:10.11.7-2ubuntu11:10.11.7-2ubuntu21:10.11.8-0ubuntu0.24.04.1

mysql-8.0

Ubuntu 24.04 LTS

Fixed in:

8.0.45-0ubuntu0.24.04.1

References

REPORT

https://ubuntu.com/security/CVE-2026-21968

ADVISORY

https://ubuntu.com/security/notices/USN-7994-1

ADVISORY

https://ubuntu.com/security/notices/USN-8006-1

REPORT