Arch LinuxASA-201505-3mariadb: denial of service
5.7 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
MULTIPLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:M/C:N/I:N/A:C
0.029 Low
EPSS
Percentile
89.7%
- CVE-2014-8964 (denial of service)
A heap-based buffer overflow was found in the way PCRE handled certain
malformed regular expressions. This issue could cause a crash while
parsing malicious regular expressions related to an assertion that
allows zero repeats.
- CVE-2015-0499 (denial of service)
Unspecified vulnerability allows remote authenticated users to affect
availability via unknown vectors related to Server : Federated.
- CVE-2015-0501 (denial of service)
Unspecified vulnerability allows remote authenticated users to affect
availability via unknown vectors related to Server : Compiling.
- CVE-2015-0505 (denial of service)
Unspecified vulnerability allows remote authenticated users to affect
availability via unknown vectors related to Server : DDL.
- CVE-2015-2571 (denial of service)
Unspecified vulnerability allows remote authenticated users to affect
availability via unknown vectors related to Server : Optimizer.
References
mariadb.com/kb/en/mariadb/mariadb-10018-release-notes/
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8964
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0499
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0501
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0505
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2571
Related
5.7 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
MULTIPLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:M/C:N/I:N/A:C
0.029 Low
EPSS
Percentile
89.7%