Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

[ GLSA 201308-06 ] MySQL: Multiple vulnerabilities
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663
PostPosted: Thu Aug 29, 2013 9:26 am    Post subject: [ GLSA 201308-06 ] MySQL: Multiple vulnerabilities Reply with quote
Gentoo Linux Security Advisory

Title: MySQL: Multiple vulnerabilities (GLSA 201308-06)
Severity: high
Exploitable: remote
Date: August 29, 2013
Updated: August 30, 2013
Bug(s): #399375, #411503, #412889, #417989, #445602, #462498, #466236, #477474
ID: 201308-06

Synopsis

Multiple vulnerabilities have been found in MySQL, allowing
attackers to execute arbitrary code or cause Denial of Service.


Background

MySQL is a fast, multi-threaded, multi-user SQL database server.

Affected Packages

Package: dev-db/mysql
Vulnerable: < 5.1.70
Unaffected: >= 5.1.70
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in MySQL. Please review
the CVE identifiers referenced below for details.


Impact

A remote attacker could send a specially crafted request, possibly
resulting in execution of arbitrary code with the privileges of the
application or a Denial of Service condition.


Workaround

There is no known workaround at this time.

Resolution

All MySQL users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/mysql-5.1.70"
   


References

CVE-2011-2262
CVE-2012-0075
CVE-2012-0087
CVE-2012-0101
CVE-2012-0102
CVE-2012-0112
CVE-2012-0113
CVE-2012-0114
CVE-2012-0115
CVE-2012-0116
CVE-2012-0117
CVE-2012-0118
CVE-2012-0119
CVE-2012-0120
CVE-2012-0484
CVE-2012-0485
CVE-2012-0486
CVE-2012-0487
CVE-2012-0488
CVE-2012-0489
CVE-2012-0490
CVE-2012-0491
CVE-2012-0492
CVE-2012-0493
CVE-2012-0494
CVE-2012-0495
CVE-2012-0496
CVE-2012-0540
CVE-2012-0553
CVE-2012-0572
CVE-2012-0574
CVE-2012-0578
CVE-2012-0583
CVE-2012-1688
CVE-2012-1689
CVE-2012-1690
CVE-2012-1696
CVE-2012-1697
CVE-2012-1702
CVE-2012-1703
CVE-2012-1705
CVE-2012-1734
CVE-2012-2102
CVE-2012-2122
CVE-2012-2749
CVE-2012-3150
CVE-2012-3158
CVE-2012-3160
CVE-2012-3163
CVE-2012-3166
CVE-2012-3167
CVE-2012-3173
CVE-2012-3177
CVE-2012-3180
CVE-2012-3197
CVE-2012-5060
CVE-2012-5096
CVE-2012-5611
CVE-2012-5612
CVE-2012-5613
CVE-2012-5614
CVE-2012-5615
CVE-2012-5627
CVE-2013-0367
CVE-2013-0368
CVE-2013-0371
CVE-2013-0375
CVE-2013-0383
CVE-2013-0384
CVE-2013-0385
CVE-2013-0386
CVE-2013-0389
CVE-2013-1492
CVE-2013-1502
CVE-2013-1506
CVE-2013-1511
CVE-2013-1512
CVE-2013-1521
CVE-2013-1523
CVE-2013-1526
CVE-2013-1531
CVE-2013-1532
CVE-2013-1544
CVE-2013-1548
CVE-2013-1552
CVE-2013-1555
CVE-2013-1566
CVE-2013-1567
CVE-2013-1570
CVE-2013-1623
CVE-2013-2375
CVE-2013-2376
CVE-2013-2378
CVE-2013-2381
CVE-2013-2389
CVE-2013-2391
CVE-2013-2392
CVE-2013-2395
CVE-2013-3802
CVE-2013-3804
CVE-2013-3808

Last edited by GLSA on Sat Aug 31, 2013 4:31 am; edited 1 time in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy