4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
mysql55-mysql is vulnerable to authorization bypass attacks. The vulnerability exists through an unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.70 and earlier, 5.5.32 and earlier, and 5.6.12 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-36.html
rhn.redhat.com/errata/RHSA-2014-0173.html
rhn.redhat.com/errata/RHSA-2014-0186.html
rhn.redhat.com/errata/RHSA-2014-0189.html
secunia.com/advisories/55291
security.gentoo.org/glsa/glsa-201409-04.xml
www.debian.org/security/2013/dsa-2780
www.debian.org/security/2013/dsa-2818
www.mandriva.com/security/advisories?name=MDVSA-2013:250
www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixMSQL
www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html#AppendixMSQL
www.securityfocus.com/bid/63109
www.securitytracker.com/id/1029184
www.ubuntu.com/usn/USN-2006-1
access.redhat.com/security/updates/classification/#moderate
rhn.redhat.com/errata/RHSA-2014-0186.html