Lucene search
Ubuntu.comUB:CVE-2010-3678HistoryNov 05, 2010 - 12:00 a.m.
CVE-2010-3678
2010-11-0500:00:00
ubuntu.com
ubuntu.com
13
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.112 Low
EPSS
Percentile
95.2%
Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a
denial of service (crash) via (1) IN or (2) CASE operations with NULL
arguments that are explicitly specified or indirectly provided by the WITH
ROLLUP modifier.
Bugs
- <http://bugs.mysql.com/bug.php?id=54477>
- <https://bugzilla.redhat.com/show_bug.cgi?id=628172>
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598580>
Notes
| Author | Note |
|---|---|
| jdstrand | mysql-cluster-7.0 not supported per server team |
| mdeslaur | fixed in 5.1.49 reproducer: select greatest((((1) in ((null),(-10),(0.5)))),(1)); doesn’t apply to 5.0.x |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 9.10 | noarch | mysql-dfsg-5.1 | < 5.1.37-1ubuntu5.5 | UNKNOWN |
| ubuntu | 10.04 | noarch | mysql-dfsg-5.1 | < 5.1.41-3ubuntu12.7 | UNKNOWN |
Related
prion
prion
Buffer overflow
2011-01-11 20:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:53:41
cve
cve
CVE-2010-3678
2011-01-11 20:00:00
openvas
openvas
MySQL Multiple Denial Of Service Vulnerabilities
2011-01-18 00:00:00
Fedora Update for mysql FEDORA-2010-15147
2010-12-02 00:00:00
Mandriva Update for mysql MDVSA-2011:012 (mysql)
2011-01-21 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : mysql (MDVSA-2011:012)
2011-01-28 00:00:00
Mandriva Linux Security Advisory : mysql (MDVSA-2010:155-1)
2010-08-23 00:00:00
Fedora 14 : mysql-5.1.50-2.fc14 (2010-15147)
2010-10-06 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:155-1 ] mysql
2010-11-09 00:00:00
[USN-1017-1] MySQL vulnerabilities
2010-11-15 00:00:00
MySQL multiple security vulnerabilities
2010-11-15 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: mysql-5.1.50-2.fc14
2010-10-05 13:15:08
[SECURITY] Fedora 13 Update: mysql-5.1.50-2.fc13
2010-10-05 09:34:37
oraclelinux
oraclelinux
mysql security update
2011-02-10 00:00:00
redhat
redhat
(RHSA-2011:0164) Moderate: mysql security update
2011-01-18 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2010-11-11 00:00:00
MySQL vulnerabilities
2012-03-12 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2012-01-05 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.112 Low
EPSS
Percentile
95.2%
Related for UB:CVE-2010-3678