PT-2014-1199 · Oracle+5 · Mysql Server+5

Publicado

2014-01-15

·

Atualizado

2022-08-29

·

CVE-2014-0412

CVSS v2.0

4.0

Média

VetorAV:N/AC:L/Au:S/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions MySQL Server versions 5.1.72 and earlier MySQL Server versions 5.5.34 and earlier MySQL Server versions 5.6.14 and earlier
Description The issue affects the availability of data in the MySQL Server component of Oracle MySQL, specifically related to the InnoDB subcomponent. It allows remote authenticated users to impact data availability via unknown vectors.
Recommendations For versions 5.1.72 and earlier, update to a version later than 5.1.72 to resolve the issue. For versions 5.5.34 and earlier, update to a version later than 5.5.34 to resolve the issue. For versions 5.6.14 and earlier, update to a version later than 5.6.14 to resolve the issue. As a temporary workaround, consider restricting access to the InnoDB subcomponent to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

ALT-PU-2015-1152
ALT-PU-2015-1749
BDU:2014-00357
CESA-2014_0164
CESA-2014_0173
CESA-2014_0189
CVE-2014-0412
DSA-2845-1
DSA-2848-1
RHSA-2014:0164
RHSA-2014:0173
RHSA-2014:0186
RHSA-2014:0189
RHSA-2014_0164
RHSA-2014_0186

Produtos afetados

Alt Linux
Centos
Mariadb Server
Mysql Server
Red Hat
Suse