Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3054-1:1B861
HistoryOct 20, 2014 - 3:27 p.m.

[SECURITY] [DSA 3054-1] mysql-5.5 security update

2014-10-2015:27:13
lists.debian.org
12

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Debian Security Advisory DSA-3054-1 [email protected]
http://www.debian.org/security/ Salvatore Bonaccorso
October 20, 2014 http://www.debian.org/security/faq

Package : mysql-5.5
CVE ID : CVE-2012-5615 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463
CVE-2014-6464 CVE-2014-6469 CVE-2014-6478 CVE-2014-6484
CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496
CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520
CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559
Debian Bug : 765663

Several issues have been discovered in the MySQL database server. The
vulnerabilities are addressed by upgrading MySQL to the new upstream
version 5.5.40. Please see the MySQL 5.5 Release Notes and Oracle's
Critical Patch Update advisory for further details:

https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-39.html
https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-40.html
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html

For the stable distribution (wheezy), these problems have been fixed in
version 5.5.40-0+wheezy1.

For the unstable distribution (sid), these problems will be fixed soon.

We recommend that you upgrade your mysql-5.5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7ia64libmysqlclient-dev< 5.5.40-0+wheezy1libmysqlclient-dev_5.5.40-0+wheezy1_ia64.deb
Debian7mipsmysql-server-5.5< 5.5.40-0+wheezy1mysql-server-5.5_5.5.40-0+wheezy1_mips.deb
Debian7sparclibmysqlclient-dev< 5.5.40-0+wheezy1libmysqlclient-dev_5.5.40-0+wheezy1_sparc.deb
Debian7i386libmysqld-dev< 5.5.40-0+wheezy1libmysqld-dev_5.5.40-0+wheezy1_i386.deb
Debian6i386libmysqlclient16< 5.1.73-1+deb6u1libmysqlclient16_5.1.73-1+deb6u1_i386.deb
Debian6allmysql-5.1< 5.1.73-1+deb6u1mysql-5.1_5.1.73-1+deb6u1_all.deb
Debian7s390mysql-server-5.5< 5.5.40-0+wheezy1mysql-server-5.5_5.5.40-0+wheezy1_s390.deb
Debian6amd64libmysqlclient16< 5.1.73-1+deb6u1libmysqlclient16_5.1.73-1+deb6u1_amd64.deb
Debian7kfreebsd-amd64mysql-client-5.5< 5.5.40-0+wheezy1mysql-client-5.5_5.5.40-0+wheezy1_kfreebsd-amd64.deb
Debian7mipsmysql-client-5.5< 5.5.40-0+wheezy1mysql-client-5.5_5.5.40-0+wheezy1_mips.deb
Rows per page:
1-10 of 1391

Related

osv 2
openvas 32
ubuntu 1
nessus 33
debian 2
f5 2
fedora 2
ibm 1
gentoo 1
slackware 1
mageia 2
redhat 6
centos 2
oraclelinux 2
suse 4
amazon 1
mariadbunix 20
ubuntucve 20
cve 20
debiancve 6
prion 20
packetstorm 1
veracode 14
altlinux 1
securityvulns 1
thn 1
oracle 1
osv
osv
mysql-5.5 - security update
2014-10-20 00:00:00
mysql-5.1 - security update
2014-10-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2384-1)
2014-10-16 00:00:00
Debian: Security Advisory (DSA-3054-1)
2014-10-19 00:00:00
Debian Security Advisory DSA 3054-1 (mysql-5.5 - security update)
2014-10-20 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2014-10-15 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2384-1)
2014-10-16 00:00:00
Debian DSA-3054-1 : mysql-5.5 - security update
2014-10-21 00:00:00
Fedora 20 : mariadb-galera-5.5.40-2.fc20 (2014-14791)
2014-12-03 00:00:00
debian
debian
[SECURITY] [DSA 3054-1] mysql-5.5 security update
2014-10-20 15:27:13
[SECURITY] [DLA 75-1] mysql-5.1 security update
2014-10-22 06:46:31
f5
f5
K15725 : Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
SOL15725 - Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: mariadb-galera-5.5.40-2.fc20
2014-12-03 01:02:24
[SECURITY] Fedora 20 Update: mariadb-5.5.40-1.fc20
2014-12-12 04:25:50
ibm
ibm
Security Bulletin: InfoSphere Guardium Database Activity Monitoring vulnerable to multiple Oracle MySQL vulnerabilties
2018-06-16 21:28:16
gentoo
gentoo
MySQL, MariaDB: Multiple vulnerabilities
2014-11-05 00:00:00
slackware
slackware
[slackware-security] mariadb
2014-11-04 01:25:07
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2014-10-26 00:23:09
Updated mariadb packages fix CVE-2014-4274
2014-09-15 14:36:30
redhat
redhat
(RHSA-2014:1937) Important: mariadb-galera security update
2014-12-02 16:39:58
(RHSA-2014:1940) Important: mariadb-galera security update
2014-12-02 16:44:45
(RHSA-2014:1861) Important: mariadb security update
2014-11-17 00:00:00
centos
centos
mariadb security update
2014-11-17 17:32:07
mysql55 security update
2014-11-17 17:35:05
oraclelinux
oraclelinux
mysql55-mysql security update
2014-11-17 00:00:00
mariadb security update
2014-11-17 00:00:00
suse
suse
Security update for MySQL (important)
2015-03-28 01:04:56
Security update for mariadb (important)
2015-04-21 19:05:04
Security update for MariaDB (important)
2015-07-09 17:08:05
amazon
amazon
Important: mysql55
2014-10-16 22:14:00
mariadbunix
mariadbunix
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6500
2014-10-15 22:55:00
CVE-2014-6494
2014-10-15 22:55:00
ubuntucve
ubuntucve
CVE-2014-6496
2014-10-15 00:00:00
CVE-2014-6500
2014-10-15 00:00:00
CVE-2014-6494
2014-10-15 00:00:00
cve
cve
CVE-2014-6491
2014-10-15 22:55:00
CVE-2014-6500
2014-10-15 22:55:00
CVE-2014-6494
2014-10-15 22:55:00
debiancve
debiancve
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6500
2014-10-15 22:55:00
prion
prion
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
packetstorm
packetstorm
Oracle MySQL User Account Enumeration Utility
2012-12-03 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:04:51
Information Disclosure
2019-01-15 09:02:58
Denial Of Service (DoS)
2019-05-02 05:04:50
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version April
2013-04-01 00:00:00
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2014-11-03 00:00:00
thn
thn
Multiple MySQL database Zero-day vulnerabilities published
2012-12-03 13:54:00
oracle
oracle
Oracle Critical Patch Update - October 2014
2014-10-14 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for DEBIAN:DSA-3054-1:1B861
osv2openvas32ubuntu1nessus33debian2f52fedora2ibm1gentoo1slackware1mageia2redhat6centos2oraclelinux2suse4amazon1mariadbunix20ubuntucve20cve20debiancve6prion20packetstorm1veracode14altlinux1securityvulns1thn1oracle1