Denial Of Service (DoS)

Oracle MySQL and MariaDB through are vulnerable to denial of service attacks. A local attacker can exploit the flaw in library libmysqlclient.so of component C API to cause denial of service conditions via crashing the application...

Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerability (CVE-2017-3302)

Summary Multiple Oracle products are vulnerable to a denial of service, caused by a use-after-free vulnerability in the libmysqlclient.so. An attacker could exploit this vulnerability to cause the application to crash. IBM Security Guardium addressed this issue Vulnerability Details CVEID:...

Debian: Security Advisory (DLA-819-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated mariadb packages fix security vulnerability

Crash in libmysqlclient.so in MariaDB 10.0.x through 10.0.29 CVE-2017-3302. Vulnerability in the MariaDB Server component of MariaDB subcomponent: Server: MyISAM. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MariaDB Server executes to...

openSUSE Security Update : mariadb (openSUSE-2017-257)

This mariadb version update to 10.0.29 fixes the following issues : - CVE-2017-3318: unspecified vulnerability affecting Error Handling bsc1020896 - CVE-2017-3317: unspecified vulnerability affecting Logging bsc1020894 - CVE-2017-3312: insecure error log file handling in mysqldsafe, incomplete...

Updated mariadb packages fix security vulnerability

Root Privilege Escalation CVE-2016-6664. Unspecified vulnerability affecting the Optimizer component CVE-2017-3238. Unspecified vulnerability affecting the Charsets component CVE-2017-3243. Unspecified vulnerability affecing the DML component CVE-2017-3244. Unspecified vulnerability affecting...

CVE-2017-3302

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3...

CVE-2017-3302

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3...

CVE-2017-3302

Removed by vendor...

CVE-2017-3302

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3...

CVE-2017-3302

CVE-2017-3302 describes a crash in libmysqlclient.so when the server connection is lost, affecting Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5, and MariaDB up to 5.5.54 and various 10.0/10.1/10.2 branches up to 10.2.3. The vulnerability can impact availability (partial impact per CVSS v2/v3...

SUSE SLES12 Security Update : mariadb (SUSE-SU-2017:0411-1)

This mariadb version update to 10.0.29 fixes the following issues : - CVE-2017-3318: unspecified vulnerability affecting Error Handling bsc1020896 - CVE-2017-3317: unspecified vulnerability affecting Logging bsc1020894 - CVE-2017-3312: insecure error log file handling in mysqldsafe, incomplete...

SUSE SLED12 / SLES12 Security Update : mariadb (SUSE-SU-2017:0412-1)

This mariadb version update to 10.0.29 fixes the following issues : - CVE-2017-3318: unspecified vulnerability affecting Error Handling bsc1020896 - CVE-2017-3317: unspecified vulnerability affecting Logging bsc1020894 - CVE-2017-3312: insecure error log file handling in mysqldsafe, incomplete...

MySQL < 3.23.33 Multiple Buffer Overflows

The version of MySQL installed on the remote host is affected by the following vulnerabilities : - A buffer overflow in libmysqlclient.so allows a remote attacker to execute arbitrary code via a long host parameter. CVE-2001-1453 - A buffer overflow allows a remote attacker to execute arbitrary...

CVE-2001-1453

CVE-2001-1453 describes a stack/buffer overflow in the MySQL client library (libmysqlclient.so) that affects MySQL 3.23.33 and earlier. The vulnerability allows remote attackers to trigger code execution by supplying a long host parameter, due to a buffer overflow in the library’s handling of hos...