MariaDB -- Vulnerability in C API

MariaDB reports: Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

MySQL 8.0.x < 8.0.19 Multiple Vulnerabilities (Jan 2020 CPU)

The version of MySQL running on the remote host is 8.0.x prior to 8.0.19. It is, therefore, affected by multiple vulnerabilities, as noted in the January 2020 Critical Patch Update advisory: - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Compiling cURL. Supported...

CVE-2020-2570

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

CVE-2020-2573

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

Design/Logic Flaw

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

CVE-2020-2573

CVE-2020-2573 affects Oracle MySQL’s C API client. Affects: MySQL Client, versions 5.7.28 and earlier, and 8.0.18 and earlier. Root cause: a vulnerability in the C API that allows an unauthenticated, network-based attacker access via multiple protocols to cause a hang or frequent, repeatable cras...

CVE-2020-2574

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

CVE-2020-2573

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

CVE-2020-2574

Disclaimer: This data contains information about vulnerable...

CVE-2020-2573

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

CVE-2020-2574

CVE-2020-2574 affects the Oracle MySQL Client (C API). Affected: MySQL Client in Oracle MySQL releases 5.6.46 and earlier, 5.7.28 and earlier, and 8.0.18 and earlier. Description in the sources: vulnerability allows an unauthenticated attacker with network access via multiple protocols to cause a...

Oracle MySQL Client cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle MySQL Client is prone to multiple remote security vulnerabilities in 'C API' component. These vulnerabilities can be exploited over the 'MySQL' protocol. These vulnerabilities affect the following supported versions: 5.7.28 and prior, 8.0.18 and prior Technologies Affected Orac...

Oracle MySQL Server cpujan2020 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'C API', and 'Server: Optimizer' components are affected. These vulnerabilities affect the following supported versions: 5.6.46 and prior, 5.7....

RHEL 8 : mariadb:10.3 (RHSA-2019:3708)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3708 advisory. MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded ...

MySQL 8.0.x < 8.0.18 Multiple Vulnerabilities (Oct 2019 CPU)

The version of MySQL running on the remote host is 8.0.x prior to 8.0.18. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the October 2019 Critical Patch Update advisory: - Vulnerability in the MySQL Server product of Oracle...

CVE-2019-3011

CVE-2019-3011 affects Oracle MySQL Server (Server: C API). Affected versions are 8.0.17 and prior; attacker with network access via multiple protocols can cause MySQL Server to hang or crash (DoS). Multiple connected advisories reference this CVE within the MySQL 8.0 stack (InnoDB/C API/Parser/et...

CVE-2019-2993

CVE-2019-2993 is a vulnerability in Oracle MySQL’s MySQL Server, specifically the Server: C API component. Affected versions include MySQL 5.7.27 and earlier and 8.0.17 and earlier. The vulnerability is described as difficult to exploit but, if exploited by a low-privilege attacker with network a...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2019-37138)

MySQL Server mysqld is the MySQL server, the main program that performs most of the work in a MySQL installation. An unspecified vulnerability exists in the Server: C API component in Oracle MySQL Server 5.7.27, 8.0.17, and earlier versions. An attacker could exploit this vulnerability to cause t...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2019-37146)

MySQL Server mysqld is the MySQL server, the main program that performs most of the work in a MySQL installation. An unspecified vulnerability exists in the Server: C API component of Oracle MySQL Server 8.0.17 and earlier. An attacker can exploit this vulnerability to cause the MySQL server to...

Oracle MySQL Server Cpuoct2019 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'Server: PS', 'Server: Security: Encryption', 'Server: C API', 'Server: Replication', and 'InnoDB' components are affected. These vulnerabiliti...