CVE-2022-21534: 
MySQL vulnerability analysis and mitigation

CVE-2022-21534 is a vulnerability in the MySQL Server product of Oracle MySQL, specifically affecting the Server: Stored Procedure component. The vulnerability affects MySQL versions 8.0.29 and prior. This security flaw was discovered and allocated a CVE ID on November 15, 2021, and was later addressed in Oracle's July 2022 Critical Patch Update (Oracle CPU).

The vulnerability has been assigned a CVSS v3.1 Base Score of 4.9 (Medium severity) with the following vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H. The vulnerability is easily exploitable and requires a high-privileged attacker with network access via multiple protocols to compromise MySQL Server (NVD).

Successful exploitation of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash, leading to a complete Denial of Service (DoS) of MySQL Server. The vulnerability affects availability while confidentiality and integrity remain unaffected (MITRE CVE).

Oracle has released patches for this vulnerability in their July 2022 Critical Patch Update. Users are strongly recommended to update to versions newer than MySQL 8.0.29. For Ubuntu users, MySQL has been updated to version 8.0.30 in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS, while Ubuntu 18.04 LTS has been updated to MySQL 5.7.39 (Fedora Update).