Lucene search

GoogleOSV:DSA-3308-1

HistoryJul 18, 2015 - 12:00 a.m.

mysql-5.5 - security update

2015-07-1800:00:00

Google

osv.dev

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

JSON

Several issues have been discovered in the MySQL database server. The
vulnerabilities are addressed by upgrading MySQL to the new upstream
version 5.5.44. Please see the MySQL 5.5 Release Notes and Oracle’s
Critical Patch Update advisory for further details:

For the oldstable distribution (wheezy), these problems have been fixed
in version 5.5.44-0+deb7u1.

For the stable distribution (jessie), these problems have been fixed in
version 5.5.44-0+deb8u1.

We recommend that you upgrade your mysql-5.5 packages.

CPENameOperatorVersion
mysql-5.5eq5.5.43-0+deb8u1
mysql-5.5eq5.5.42-1

CPE	Name	Operator	Version
	mysql-5.5	eq	5.5.43-0+deb8u1
	mysql-5.5	eq	5.5.42-1

References

www.debian.org/security/2015/dsa-3308

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

JSON

Related for OSV:DSA-3308-1