Lucene search

K
amazonAmazonALAS-2014-329
HistoryApr 25, 2014 - 3:48 p.m.

Medium: mysql55

2014-04-2515:48:00
alas.aws.amazon.com
22

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

5.6

Confidence

High

EPSS

0.036

Percentile

91.6%

Issue Overview:

This update fixes numerous unspecified (by upstream) vulnerabilities in the MySQL Server component 5.5.35 and earlier and 5.6.15 and earlier.

Affected Packages:

mysql55

Issue Correction:
Run yum update mysql55 to update your system.

New Packages:

i686:  
    mysql55-server-5.5.37-1.46.amzn1.i686  
    mysql55-debuginfo-5.5.37-1.46.amzn1.i686  
    mysql55-devel-5.5.37-1.46.amzn1.i686  
    mysql55-common-5.5.37-1.46.amzn1.i686  
    mysql55-test-5.5.37-1.46.amzn1.i686  
    mysql55-embedded-devel-5.5.37-1.46.amzn1.i686  
    mysql55-libs-5.5.37-1.46.amzn1.i686  
    mysql55-5.5.37-1.46.amzn1.i686  
    mysql55-bench-5.5.37-1.46.amzn1.i686  
    mysql55-embedded-5.5.37-1.46.amzn1.i686  
  
src:  
    mysql55-5.5.37-1.46.amzn1.src  
  
x86_64:  
    mysql55-test-5.5.37-1.46.amzn1.x86_64  
    mysql55-server-5.5.37-1.46.amzn1.x86_64  
    mysql55-bench-5.5.37-1.46.amzn1.x86_64  
    mysql55-embedded-5.5.37-1.46.amzn1.x86_64  
    mysql55-embedded-devel-5.5.37-1.46.amzn1.x86_64  
    mysql55-libs-5.5.37-1.46.amzn1.x86_64  
    mysql55-devel-5.5.37-1.46.amzn1.x86_64  
    mysql55-debuginfo-5.5.37-1.46.amzn1.x86_64  
    mysql55-common-5.5.37-1.46.amzn1.x86_64  
    mysql55-5.5.37-1.46.amzn1.x86_64  

Additional References

Red Hat: CVE-2014-0384, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440

Mitre: CVE-2014-0384, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

5.6

Confidence

High

EPSS

0.036

Percentile

91.6%