Lucene search

K
amazonAmazonALAS-2012-145
HistoryDec 06, 2012 - 9:25 p.m.

Important: mysql51

2012-12-0621:25:00
alas.aws.amazon.com
23

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.949

Percentile

99.3%

Issue Overview:

A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. (CVE-2012-5611)

Affected Packages:

mysql51

Issue Correction:
Run yum update mysql51 to update your system.

New Packages:

i686:  
    mysql51-bench-5.1.66-1.57.amzn1.i686  
    mysql51-5.1.66-1.57.amzn1.i686  
    mysql51-embedded-5.1.66-1.57.amzn1.i686  
    mysql51-embedded-devel-5.1.66-1.57.amzn1.i686  
    mysql51-libs-5.1.66-1.57.amzn1.i686  
    mysql51-debuginfo-5.1.66-1.57.amzn1.i686  
    mysql51-common-5.1.66-1.57.amzn1.i686  
    mysql51-test-5.1.66-1.57.amzn1.i686  
    mysql51-devel-5.1.66-1.57.amzn1.i686  
    mysql51-server-5.1.66-1.57.amzn1.i686  
  
src:  
    mysql51-5.1.66-1.57.amzn1.src  
  
x86_64:  
    mysql51-5.1.66-1.57.amzn1.x86_64  
    mysql51-debuginfo-5.1.66-1.57.amzn1.x86_64  
    mysql51-embedded-5.1.66-1.57.amzn1.x86_64  
    mysql51-server-5.1.66-1.57.amzn1.x86_64  
    mysql51-libs-5.1.66-1.57.amzn1.x86_64  
    mysql51-embedded-devel-5.1.66-1.57.amzn1.x86_64  
    mysql51-devel-5.1.66-1.57.amzn1.x86_64  
    mysql51-common-5.1.66-1.57.amzn1.x86_64  
    mysql51-test-5.1.66-1.57.amzn1.x86_64  
    mysql51-bench-5.1.66-1.57.amzn1.x86_64  

Additional References

Red Hat: CVE-2012-5611

Mitre: CVE-2012-5611

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.949

Percentile

99.3%