Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3054-1:E8FB1
HistoryOct 20, 2014 - 3:27 p.m.

[SECURITY] [DSA 3054-1] mysql-5.5 security update

2014-10-2015:27:13
lists.debian.org
17

3.3 Low

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:M/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

49.4%

JSON

Debian Security Advisory DSA-3054-1 [email protected]
http://www.debian.org/security/ Salvatore Bonaccorso
October 20, 2014 http://www.debian.org/security/faq

Package : mysql-5.5
CVE ID : CVE-2012-5615 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463
CVE-2014-6464 CVE-2014-6469 CVE-2014-6478 CVE-2014-6484
CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496
CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520
CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559
Debian Bug : 765663

Several issues have been discovered in the MySQL database server. The
vulnerabilities are addressed by upgrading MySQL to the new upstream
version 5.5.40. Please see the MySQL 5.5 Release Notes and Oracle's
Critical Patch Update advisory for further details:

https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-39.html
https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-40.html
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html

For the stable distribution (wheezy), these problems have been fixed in
version 5.5.40-0+wheezy1.

For the unstable distribution (sid), these problems will be fixed soon.

We recommend that you upgrade your mysql-5.5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7mipselmysql-client-5.5< 5.5.40-0+wheezy1mysql-client-5.5_5.5.40-0+wheezy1_mipsel.deb
Debian7ia64mysql-testsuite-5.5< 5.5.40-0+wheezy1mysql-testsuite-5.5_5.5.40-0+wheezy1_ia64.deb
Debian7mipsellibmysqld-pic< 5.5.40-0+wheezy1libmysqld-pic_5.5.40-0+wheezy1_mipsel.deb
Debian7s390libmysqlclient18< 5.5.40-0+wheezy1libmysqlclient18_5.5.40-0+wheezy1_s390.deb
Debian7s390mysql-server-5.5< 5.5.40-0+wheezy1mysql-server-5.5_5.5.40-0+wheezy1_s390.deb
Debian7mipsellibmysqlclient18< 5.5.40-0+wheezy1libmysqlclient18_5.5.40-0+wheezy1_mipsel.deb
Debian7i386mysql-testsuite-5.5< 5.5.40-0+wheezy1mysql-testsuite-5.5_5.5.40-0+wheezy1_i386.deb
Debian7powerpcmysql-source-5.5< 5.5.40-0+wheezy1mysql-source-5.5_5.5.40-0+wheezy1_powerpc.deb
Debian7ia64libmysqld-pic< 5.5.40-0+wheezy1libmysqld-pic_5.5.40-0+wheezy1_ia64.deb
Debian7powerpclibmysqlclient18< 5.5.40-0+wheezy1libmysqlclient18_5.5.40-0+wheezy1_powerpc.deb
Rows per page:
1-10 of 1211

Related

ubuntu 1
openvas 32
nessus 33
debian 2
osv 2
f5 2
fedora 2
ibm 1
gentoo 1
slackware 1
mageia 2
redhat 6
centos 2
oraclelinux 2
suse 4
amazon 1
mariadbunix 20
ubuntucve 20
prion 20
cve 20
debiancve 6
packetstorm 1
veracode 14
securityvulns 1
altlinux 1
oracle 1
thn 1
ubuntu
ubuntu
MySQL vulnerabilities
2014-10-15 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3054-1)
2014-10-19 00:00:00
Debian Security Advisory DSA 3054-1 (mysql-5.5 - security update)
2014-10-20 00:00:00
Ubuntu: Security Advisory (USN-2384-1)
2014-10-16 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2384-1)
2014-10-16 00:00:00
Debian DSA-3054-1 : mysql-5.5 - security update
2014-10-21 00:00:00
Fedora 20 : mariadb-galera-5.5.40-2.fc20 (2014-14791)
2014-12-03 00:00:00
debian
debian
[SECURITY] [DSA 3054-1] mysql-5.5 security update
2014-10-20 15:27:13
[SECURITY] [DLA 75-1] mysql-5.1 security update
2014-10-22 06:46:31
osv
osv
mysql-5.5 - security update
2014-10-20 00:00:00
mysql-5.1 - security update
2014-10-22 00:00:00
f5
f5
K15725 : Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
SOL15725 - Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: mariadb-galera-5.5.40-2.fc20
2014-12-03 01:02:24
[SECURITY] Fedora 20 Update: mariadb-5.5.40-1.fc20
2014-12-12 04:25:50
ibm
ibm
Security Bulletin: InfoSphere Guardium Database Activity Monitoring vulnerable to multiple Oracle MySQL vulnerabilties
2018-06-16 21:28:16
gentoo
gentoo
MySQL, MariaDB: Multiple vulnerabilities
2014-11-05 00:00:00
slackware
slackware
[slackware-security] mariadb
2014-11-04 01:25:07
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2014-10-26 00:23:09
Updated mariadb packages fix CVE-2014-4274
2014-09-15 14:36:30
redhat
redhat
(RHSA-2014:1937) Important: mariadb-galera security update
2014-12-02 16:39:58
(RHSA-2014:1940) Important: mariadb-galera security update
2014-12-02 16:44:45
(RHSA-2014:1859) Important: mysql55-mysql security update
2014-11-17 00:00:00
centos
centos
mariadb security update
2014-11-17 17:32:07
mysql55 security update
2014-11-17 17:35:05
oraclelinux
oraclelinux
mysql55-mysql security update
2014-11-17 00:00:00
mariadb security update
2014-11-17 00:00:00
suse
suse
Security update for MySQL (important)
2015-03-28 01:04:56
Security update for mariadb (important)
2015-04-21 19:05:04
Security update for MariaDB (important)
2015-07-09 17:08:05
amazon
amazon
Important: mysql55
2014-10-16 22:14:00
mariadbunix
mariadbunix
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6491
2014-10-15 22:55:00
ubuntucve
ubuntucve
CVE-2014-6496
2014-10-15 00:00:00
CVE-2014-6500
2014-10-15 00:00:00
CVE-2014-6494
2014-10-15 00:00:00
prion
prion
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
cve
cve
CVE-2014-6500
2014-10-15 22:55:00
CVE-2014-6491
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
debiancve
debiancve
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6491
2014-10-15 22:55:00
packetstorm
packetstorm
Oracle MySQL User Account Enumeration Utility
2012-12-03 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:04:51
Information Disclosure
2019-01-15 09:02:58
Denial Of Service (DoS)
2019-05-02 05:04:50
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2014-11-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version April
2013-04-01 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2014
2014-10-14 00:00:00
thn
thn
Multiple MySQL database Zero-day vulnerabilities published
2012-12-03 13:54:00

3.3 Low

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:M/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

49.4%

JSON
Related for DEBIAN:DSA-3054-1:E8FB1
ubuntu1openvas32nessus33debian2osv2f52fedora2ibm1gentoo1slackware1mageia2redhat6centos2oraclelinux2suse4amazon1mariadbunix20ubuntucve20prion20cve20debiancve6packetstorm1veracode14securityvulns1altlinux1oracle1thn1