6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.972 High
EPSS
Percentile
99.8%
MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
A stack-based buffer overflow flaw was found in the user permission
checking code in MySQL. An authenticated database user could use this flaw
to crash the mysqld daemon or, potentially, execute arbitrary code with the
privileges of the user running the mysqld daemon. (CVE-2012-5611)
All MySQL users should upgrade to these updated packages, which correct
this issue. After installing this update, the MySQL server daemon (mysqld)
will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | x86_64 | mysql-libs | < 5.1.66-2.el6_3 | mysql-libs-5.1.66-2.el6_3.x86_64.rpm |
RedHat | 6 | s390 | mysql-embedded-devel | < 5.1.66-2.el6_3 | mysql-embedded-devel-5.1.66-2.el6_3.s390.rpm |
RedHat | 6 | x86_64 | mysql-devel | < 5.1.66-2.el6_3 | mysql-devel-5.1.66-2.el6_3.x86_64.rpm |
RedHat | 6 | i686 | mysql-embedded | < 5.1.66-2.el6_3 | mysql-embedded-5.1.66-2.el6_3.i686.rpm |
RedHat | 6 | x86_64 | mysql-embedded-devel | < 5.1.66-2.el6_3 | mysql-embedded-devel-5.1.66-2.el6_3.x86_64.rpm |
RedHat | 6 | i686 | mysql | < 5.1.66-2.el6_3 | mysql-5.1.66-2.el6_3.i686.rpm |
RedHat | 6 | i686 | mysql-test | < 5.1.66-2.el6_3 | mysql-test-5.1.66-2.el6_3.i686.rpm |
RedHat | 6 | x86_64 | mysql-debuginfo | < 5.1.66-2.el6_3 | mysql-debuginfo-5.1.66-2.el6_3.x86_64.rpm |
RedHat | 6 | ppc | mysql-embedded-devel | < 5.1.66-2.el6_3 | mysql-embedded-devel-5.1.66-2.el6_3.ppc.rpm |
RedHat | 6 | i686 | mysql-debuginfo | < 5.1.66-2.el6_3 | mysql-debuginfo-5.1.66-2.el6_3.i686.rpm |