Lucene search
Ubuntu.comUB:CVE-2014-2436HistoryApr 15, 2014 - 12:00 a.m.
CVE-2014-2436
2014-04-1500:00:00
ubuntu.com
ubuntu.com
5
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.4%
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and
5.6.16 and earlier allows remote authenticated users to affect
confidentiality, integrity, and availability via vectors related to RBR.
Bugs
- <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-2436>
- <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=744910>
- <https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1309662>
Notes
| Author | Note |
|---|---|
| mdeslaur | no indication that 5.1 is vulnerable, and no details, so marking as not-affected for now. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 12.04 | noarch | mysql-5.5 | < 5.5.37-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | mysql-5.5 | < 5.5.37-0ubuntu0.12.10.1 | UNKNOWN |
| ubuntu | 13.10 | noarch | mysql-5.5 | < 5.5.37-0ubuntu0.13.10.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | mysql-5.5 | < 5.5.37-0ubuntu0.14.04.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | mysql-5.6 | < 5.6.17-0ubuntu0.14.04.1 | UNKNOWN |
Related
cve
cve
CVE-2014-2436
2014-04-16 02:55:00
mariadbunix
mariadbunix
CVE-2014-2436
2014-04-16 02:55:00
prion
prion
Design/Logic Flaw
2014-04-16 02:55:00
nessus
nessus
MySQL 5.5.x < 5.5.37 MySQL Multiple Vulnerabilities
2014-04-03 00:00:00
MariaDB 5.5 < 5.5.37 Multiple Vulnerabilities
2014-12-09 00:00:00
MySQL 5.6.x < 5.6.17 Multiple Vulnerabilities
2014-04-16 00:00:00
openvas
openvas
Oracle MySQL Multiple Unspecified vulnerabilities - 02 (May 2014) - Windows
2014-05-08 00:00:00
Oracle MySQL Multiple Unspecified Vulnerabilities - 16 (Jun 2016) - Linux
2016-06-03 00:00:00
Fedora Update for mariadb-galera FEDORA-2014-6120
2014-05-19 00:00:00
redhat
redhat
(RHSA-2014:0536) Moderate: mysql55-mysql security update
2014-05-22 00:00:00
(RHSA-2014:0522) Moderate: mariadb55-mariadb security update
2014-05-20 11:06:28
(RHSA-2014:0537) Moderate: mysql55-mysql security update
2014-05-22 17:05:47
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:58:13
Unauthorized Access
2019-05-02 04:58:14
Denial Of Service (DoS)
2019-05-02 04:58:13
centos
centos
mariadb55 security update
2014-05-21 17:57:10
mysql55 security update
2014-05-22 23:25:52
mysql55 security update
2014-05-22 23:08:29
slackware
slackware
[slackware-security] mariadb
2014-06-01 21:04:10
amazon
amazon
Medium: mysql55
2014-04-25 15:48:00
oraclelinux
oraclelinux
mysql55-mysql security update
2014-05-22 00:00:00
mariadb security update
2014-07-23 00:00:00
mariadb security update
2014-11-17 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2014-05-24 11:23:00
fedora
fedora
[SECURITY] Fedora 20 Update: mariadb-galera-5.5.37-2.fc20
2014-05-16 10:09:50
[SECURITY] Fedora 20 Update: community-mysql-5.5.37-1.fc20
2014-04-29 05:25:43
[SECURITY] Fedora 19 Update: community-mysql-5.5.37-1.fc19
2014-04-29 05:28:52
osv
osv
mysql-5.5 - security update
2014-05-03 00:00:00
debian
debian
[SECURITY] [DSA 2919-1] mysql-5.5 security update
2014-05-03 08:06:27
[SECURITY] [DSA 2919-1] mysql-5.5 security update
2014-05-03 08:06:27
ubuntu
ubuntu
MySQL vulnerabilities
2014-04-23 00:00:00
suse
suse
Security update for MySQL (important)
2014-06-07 00:04:26
gentoo
gentoo
MySQL: Multiple vulnerabilities
2014-09-04 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2014
2014-04-15 00:00:00
securityvulns
securityvulns
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.4%
Related for UB:CVE-2014-2436