PT-2013-1034 · Oracle+5 · Mysql Server+5

Published

2013-11-21

·

Updated

2022-08-29

·

CVE-2014-0402

CVSS v2.0

4.0

Medium

VectorAV:N/AC:L/Au:S/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions Oracle MySQL versions 5.1.71 and earlier Oracle MySQL versions 5.5.33 and earlier Oracle MySQL versions 5.6.13 and earlier
Description The issue allows remote authenticated users to affect availability via unknown vectors related to Locking in the MySQL Server component.
Recommendations For Oracle MySQL versions 5.1.71 and earlier, update to a version later than 5.1.71 to resolve the issue. For Oracle MySQL versions 5.5.33 and earlier, update to a version later than 5.5.33 to resolve the issue. For Oracle MySQL versions 5.6.13 and earlier, update to a version later than 5.6.13 to resolve the issue. As a temporary workaround, consider restricting access to the Locking component until a patch is available.

Fix

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2013-1335
ALT-PU-2015-1152
BDU:2014-00348
CESA-2014_0164
CESA-2014_0173
CESA-2014_0189
CVE-2014-0402
DSA-2845-1
DSA-2848-1
RHSA-2014:0164
RHSA-2014:0173
RHSA-2014:0186
RHSA-2014:0189
RHSA-2014_0164
RHSA-2014_0186

Affected Products

Alt Linux
Centos
Mariadb Server
Mysql Server
Red Hat
Suse