CLSA-2026-1777683582 mysql: Fix of CVE-2018-2755

CVE-2018-2755: harden binlog event decoding against corrupt binary log files BUG24365972...

CLSA-2026-1777538840 mysql: Fix of CVE-2018-2755

CVE-2018-2755: harden binlog event decoding against corrupt binary log files BUG24365972...

EUVD-2007-6280

Malware in sbrugna...

EUVD-2010-3663

Malware in sbrugna...

SUSE CVE-2010-3679

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service mysqld daemon crash via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind...

GHSA-P6FH-XC6R-G5HW Brokercap Bifrost subject to authentication bypass when using HTTP basic authentication

Bifrost is a middleware package which can synchronize MySQL/MariaDB binlog data to other types of databases. Versions 1.8.6-release and prior are vulnerable to authentication bypass when using HTTP basic authentication. This may allow group members who only have read permissions to write requests...

CVE-2022-39219

Summary: CVE-2022-39219 affects the Bifrost middleware (used to synchronize MySQL/MariaDB binlogs to other databases). Versions 1.8.6-release and earlier are vulnerable to an authentication bypass when HTTP basic authentication is used, potentially allowing a user with read permissions to perform...

CVE-2022-38537

Archery v1.4.5 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the startfile, endfile, starttime, and stoptime parameters in the binlog2sql interface...

Updated mariadb packages fix security vulnerability

InnoDB - --skip-symbolic-links does not disallow .isl file creation MDEV-26870 - Indexed CHAR columns are broken with NOPAD collations MDEV-25440 - insert-intention lock conflicts with waiting ORDINARY lock MDEV-27025 - Crash recovery improvements MDEV-26784, MDEV-27022, MDEV-27183, MDEV-27610...

Denial Of Service (DoS)

mysql is vulnerable to denial of service DoS. The vulnerability exists as a flaw in the way MySQL processed certain values provided to the BINLOG statement caused MySQL to read unassigned memory. A remote, authenticated attacker could possibly use this flaw to crash mysqld...

SuSE 11.3 Security Update : mysql, mysql-client (SAT Patch Number 8364)

This version upgrade of mysql to 5.5.33 fixed multiple security issues : - CVE-2013-1861 / CVE-2013-3783 / CVE-2013-3793 / CVE-2013-3794 - CVE-2013-3795 / CVE-2013-3796 / CVE-2013-3798 / CVE-2013-3801 - CVE-2013-3802 / CVE-2013-3804 / CVE-2013-3805 / CVE-2013-3806 - CVE-2013-3807 / CVE-2013-3808 ...

SuSE 11.3 Security Update : MySQL (SAT Patch Number 8217)

This version upgrade of mysql to 5.5.32 fixes multiple security issues : CVE-2013-1861 / CVE-2013-3783 / CVE-2013-3793 / CVE-2013-3794 / CVE-2013-3795 / CVE-2013-3796 / CVE-2013-3798 / CVE-2013-3801 / CVE-2013-3802 / CVE-2013-3804 / CVE-2013-3805 / CVE-2013-3806 / CVE-2013-3807 / CVE-2013-3808 /...

MySQL Multiple Denial Of Service Vulnerabilities

MySQL is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mysql:mysql";...

Input validation

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service mysqld daemon crash via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind...

CVE-2010-3679

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service mysqld daemon crash via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind...

MySQL Community Server < 5.1.49 Multiple Vulnerabilities

The version of MySQL Community Server installed on the remote host is earlier than 5.1.49 and thus potentially affected by multiple vulnerabilities: - DDL statements could cause the server to crash. 55039 - Joins involving a table with a unique SET column could cause the server to crash. 54575 -...

MySQL Community Server 5.1 < 5.1.49 Multiple Denial of Service Vulnerabilities

Binary data 801140.prm...

MySQL Community Server 5.1 < 5.1.49 Multiple Denial of Service Vulnerabilities

Binary data 5646.prm...

Oracle MySQL 5.1.49 - Malformed BINLOG Arguments Denial of Service

Oracle MySQL 5.1.49 - Malformed BINLOG Arguments Denial of Service source: https://www.securityfocus.com/bid/42638/info MySQL is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the database, denying access to legitimate users. Versions prior to MySQL 5.1.49...

CVE-2007-6313

MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG, which allows remote authorized users to execute arbitrary BINLOG statements...