CVE-2013-0375

2013-01-1600:00:00

ubuntu.com

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

60.1%

JSON

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66
and earlier, and 5.1.28 and earlier, allows remote authenticated users to
affect confidentiality and integrity via unknown vectors related to Server
Replication.

Bugs

<https://launchpad.net/bugs/1100264>

Notes

Author	Note
jdstrand	mysql-cluster-7.0 not supported per Ubuntu Server team As of 2012/01/09, Oracle no longer supports MySQL 5.0. Unfortunately, because of upstream update and commit policies it is not possible to backport patches from later releases. Ubuntu is regrettably unable to support MySQL 5.0 and users are encouraged to upgrade to Ubuntu 10.04 LTS or later.

OSVersionArchitecturePackageVersionFilename
ubuntu11.10noarchmysql-5.1< 5.1.67-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchmysql-5.5< 5.5.29-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchmysql-5.5< 5.5.29-0ubuntu0.12.10.1UNKNOWN
ubuntu10.04noarchmysql-dfsg-5.1< 5.1.67-0ubuntu0.10.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.10	noarch	mysql-5.1	< 5.1.67-0ubuntu0.11.10.1	UNKNOWN
ubuntu	12.04	noarch	mysql-5.5	< 5.5.29-0ubuntu0.12.04.1	UNKNOWN
ubuntu	12.10	noarch	mysql-5.5	< 5.5.29-0ubuntu0.12.10.1	UNKNOWN
ubuntu	10.04	noarch	mysql-dfsg-5.1	< 5.1.67-0ubuntu0.10.04.1	UNKNOWN