RHSA-2014:0537
Vulnerability from csaf_redhat - Published: 2014-05-22 17:09 - Updated: 2025-11-21 17:48Summary
Red Hat Security Advisory: mysql55-mysql security update
Severity
Moderate
Notes
Topic: Updated mysql55-mysql packages that fix several security issues are now
available for Red Hat Software Collections 1.
The Red Hat Security Response Team has rated this update as having Moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details: MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
This update fixes several vulnerabilities in the MySQL database server.
Information about these flaws can be found on the Oracle Critical Patch
Update Advisory page, listed in the References section. (CVE-2014-2436,
CVE-2014-2440, CVE-2014-0384, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431,
CVE-2014-2432, CVE-2014-2438)
These updated packages upgrade MySQL to version 5.5.37. Refer to the MySQL
Release Notes listed in the References section for a complete list of
changes.
All MySQL users should upgrade to these updated packages, which correct
these issues. After installing this update, the MySQL server daemon
(mysqld) will be restarted automatically.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect availability via unknown vectors related to Options.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability Oracle the MySQL Server component 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Federated.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR.
6.0 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication.
3.5 ()
Vendor Fix
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
https://access.redhat.com/errata/RHSA-2014:0537
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated mysql55-mysql packages that fix several security issues are now\navailable for Red Hat Software Collections 1.\n\nThe Red Hat Security Response Team has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of\nthe MySQL server daemon (mysqld) and many client programs and libraries.\n\nThis update fixes several vulnerabilities in the MySQL database server.\nInformation about these flaws can be found on the Oracle Critical Patch\nUpdate Advisory page, listed in the References section. (CVE-2014-2436,\nCVE-2014-2440, CVE-2014-0384, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431,\nCVE-2014-2432, CVE-2014-2438)\n\nThese updated packages upgrade MySQL to version 5.5.37. Refer to the MySQL\nRelease Notes listed in the References section for a complete list of\nchanges.\n\nAll MySQL users should upgrade to these updated packages, which correct\nthese issues. After installing this update, the MySQL server daemon\n(mysqld) will be restarted automatically.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0537",
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "https://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-37.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-37.html"
},
{
"category": "external",
"summary": "1088133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088133"
},
{
"category": "external",
"summary": "1088134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088134"
},
{
"category": "external",
"summary": "1088143",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088143"
},
{
"category": "external",
"summary": "1088146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088146"
},
{
"category": "external",
"summary": "1088179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088179"
},
{
"category": "external",
"summary": "1088190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088190"
},
{
"category": "external",
"summary": "1088191",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088191"
},
{
"category": "external",
"summary": "1088197",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088197"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0537.json"
}
],
"title": "Red Hat Security Advisory: mysql55-mysql security update",
"tracking": {
"current_release_date": "2025-11-21T17:48:23+00:00",
"generator": {
"date": "2025-11-21T17:48:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2014:0537",
"initial_release_date": "2014-05-22T17:09:11+00:00",
"revision_history": [
{
"date": "2014-05-22T17:09:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-05-22T17:09:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:48:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:1::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-server@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-bench@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-test@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-devel@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-libs@5.5.37-1.2.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"product": {
"name": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"product_id": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql-debuginfo@5.5.37-1.2.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "mysql55-mysql-0:5.5.37-1.2.el6.src",
"product": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.src",
"product_id": "mysql55-mysql-0:5.5.37-1.2.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mysql55-mysql@5.5.37-1.2.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.src as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src"
},
"product_reference": "mysql55-mysql-0:5.5.37-1.2.el6.src",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.src as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src"
},
"product_reference": "mysql55-mysql-0:5.5.37-1.2.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64 as a component of Red Hat Software Collections 1 for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
},
"product_reference": "mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-1.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-0384",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088133"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to XML (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-0384"
},
{
"category": "external",
"summary": "RHBZ#1088133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088133"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-0384",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to XML (CPU April 2014)"
},
{
"cve": "CVE-2014-2419",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088134"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to Partition (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2419"
},
{
"category": "external",
"summary": "RHBZ#1088134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088134"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2419",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to Partition (CPU April 2014)"
},
{
"cve": "CVE-2014-2430",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088143"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to Performance Schema (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2430"
},
{
"category": "external",
"summary": "RHBZ#1088143",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088143"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2430",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to Performance Schema (CPU April 2014)"
},
{
"cve": "CVE-2014-2431",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088146"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect availability via unknown vectors related to Options.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to Options (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2431"
},
{
"category": "external",
"summary": "RHBZ#1088146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2431",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2431"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2431",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2431"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to Options (CPU April 2014)"
},
{
"cve": "CVE-2014-2432",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088179"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability Oracle the MySQL Server component 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Federated.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to Federated (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2432"
},
{
"category": "external",
"summary": "RHBZ#1088179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2432",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to Federated (CPU April 2014)"
},
{
"cve": "CVE-2014-2436",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088190"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to RBR (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2436"
},
{
"category": "external",
"summary": "RHBZ#1088190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088190"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2436",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2436"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2436",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2436"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: unspecified vulnerability related to RBR (CPU April 2014)"
},
{
"cve": "CVE-2014-2438",
"discovery_date": "2014-04-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1088191"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified DoS related to Replication (CPU April 2014)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2438"
},
{
"category": "external",
"summary": "RHBZ#1088191",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088191"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2438",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL"
}
],
"release_date": "2014-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-05-22T17:09:11+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0537"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Server-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Server-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.src",
"6Workstation-RHSCL-1.0:mysql55-mysql-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-bench-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-debuginfo-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-devel-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-libs-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-server-0:5.5.37-1.2.el6.x86_64",
"6Workstation-RHSCL-1.0:mysql55-mysql-test-0:5.5.37-1.2.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified DoS related to Replication (CPU April 2014)"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…