MySQL服务器漏洞修复

1. Oracle MySQL openssl 组件输入验证错误漏洞(CVE-2022-1292

升级openssl过程如下

yum install -y zlib zlib-devel  gcc
--下载网址
https://www.openssl.org/source/openssl-1.1.1g.tar.gz
--编译 openssl
tar -xvf openssl-1.1.1g.tar.gz
cd openssl-1.1.1g
./config shared --openssldir=/usr/local/openssl --prefix=/usr/local/openssl
make && make install
--配置
echo "/usr/local/lib64/" >> /etc/ld.so.conf
ldconfig

mv /usr/bin/openssl /usr/bin/openssl.old
ln -s /usr/local/openssl/bin/openssl /usr/bin/openssl
ln -s /usr/local/openssl/include/openssl /usr/include/openssl
echo "/usr/local/openssl/lib" >> /etc/ld.so.conf

ldconfig -v

2. MySQL版本升级

前言
登录MySQL官网查看最新MySQL版本

https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-40.html

2.1 备份数据库

systemctl stop  mysql57
cp   -a  /usr/local/mysql57/data/  /media/

2.2 将之前备份

mv /usr/loacl/mysql57  /usr/loacl/bak-mysql57

2.3 升级版本

cd /usr/loacl
wget https://cdn.mysql.com//Downloads/MySQL-5.7/mysql-5.7.40-linux-glibc2.12-x86_64.tar.gz
tar xf mysql-5.7.40-linux-glibc2.12-x86_64.tar.gz
mv  mysql-5.7.40-linux-glibc2.12-x86_64 mysql57
source /etc/profile
mkdir -p /data/mysql57/{data,binlogs,log,etc,run}
ln -sv /data/mysql57/data  /usr/local/mysql57/data
ln -sv /data/mysql57/binlogs /usr/local/mysql57/binlogs
ln -sv /data/mysql57/log  /usr/local/mysql57/log
ln -sv /data/mysql57/etc  /usr/local/mysql57/etc
ln -sv /data/mysql57/run  /usr/local/mysql57/run
chown -R myerp:myerp /data/mysql57/
chown -R myerp:myerp /usr/local/mysql57/
删除之前数据库文件夹
rm -rf  /usr/local/mysql57/data
重新初始化
/usr/local/mysql57/bin/mysqld --defaults-file=/usr/local/mysql57/etc/my.cnf --initialize --user=myerp --basedir=/usr/local/mysql57 --datadir=/usr/local/mysql57/data  --lower-case-table-names=1
将初始化之后的数据删除掉
mv    /data/mysql57/data /tmp
mv  /meida/data  /data/mysql57
再次删除
rm -rf  /usr/local/mysql57/data
在做软链接
ln -sv /data/mysql57/data  /usr/local/mysql57/data
再次授权
chown -R myerp:myerp /data/mysql57/
chown -R myerp:myerp /usr/local/mysql57/
systemctl start  mysql57