Executive Summary
| Summary | |
|---|---|
| Title | mysql-5.5 security update |
| Informations | |||
|---|---|---|---|
| Name | DSA-2667 | First vendor Publication | 2013-05-12 |
| Vendor | Debian | Last vendor Modification | 2013-05-12 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:S/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 6 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Medium |
| Cvss Expoit Score | 6.8 | Authentication | Requires single instance |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to a new upstream version, 5.5.31, which includes additional changes, such as performance improvements and corrections for data loss defects. For the stable distribution (wheezy), these problems have been fixed in version 5.5.31+dfsg-0+wheezy1. For the unstable distribution (sid), these problems have been fixed in version 5.5.31+dfsg-1. We recommend that you upgrade your mysql-5.5 packages. |
Original Source
| Url : http://www.debian.org/security/2013/dsa-2667 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:17129 | |||
| Oval ID: | oval:org.mitre.oval:def:17129 | ||
| Title: | USN-1807-1 -- MySQL vulnerabilities | ||
| Description: | Multiple security issues were discovered in MySQL. | ||
| Family: | unix | Class: | patch |
| Reference(s): | usn-1807-1 CVE-2012-0553 CVE-2013-1492 CVE-2013-1502 CVE-2013-1506 CVE-2013-1511 CVE-2013-1512 CVE-2013-1521 CVE-2013-1523 CVE-2013-1526 CVE-2013-1532 CVE-2013-1544 CVE-2013-1552 CVE-2013-1555 CVE-2013-1623 CVE-2013-2375 CVE-2013-2376 CVE-2013-2378 CVE-2013-2389 CVE-2013-2391 CVE-2013-2392 | Version: | 7 |
| Platform(s): | Ubuntu 11.10 Ubuntu 12.04 Ubuntu 10.04 Ubuntu 12.10 | Product(s): | mysql-5.1 mysql-5.5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:18379 | |||
| Oval ID: | oval:org.mitre.oval:def:18379 | ||
| Title: | USN-1807-2 -- mysql-5.5 vulnerabilities | ||
| Description: | Several security issues were fixed in MySQL. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1807-2 CVE-2012-0553 CVE-2013-1492 CVE-2013-1502 CVE-2013-1506 CVE-2013-1511 CVE-2013-1512 CVE-2013-1521 CVE-2013-1523 CVE-2013-1526 CVE-2013-1532 CVE-2013-1544 CVE-2013-1552 CVE-2013-1555 CVE-2013-1623 CVE-2013-2375 CVE-2013-2376 CVE-2013-2378 CVE-2013-2389 CVE-2013-2391 CVE-2013-2392 | Version: | 7 |
| Platform(s): | Ubuntu 13.04 | Product(s): | mysql-5.5 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:18467 | |||
| Oval ID: | oval:org.mitre.oval:def:18467 | ||
| Title: | DSA-2667-1 mysql-5.5 - several | ||
| Description: | Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to a new upstream version, 5.5.31, which includes additional changes, such as performance improvements and corrections for data loss defects. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2667-1 CVE-2013-1502 CVE-2013-1511 CVE-2013-1532 CVE-2013-1544 CVE-2013-2375 CVE-2013-2376 CVE-2013-2389 CVE-2013-2391 CVE-2013-2392 | Version: | 8 |
| Platform(s): | Debian GNU/Linux 7 Debian GNU/kFreeBSD 7 | Product(s): | mysql-5.5 |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2014-12-22 | Name : The remote device is affected by multiple vulnerabilities. File : juniper_space_jsa10627.nasl - Type : ACT_GATHER_INFO |
| 2013-09-04 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2013-186.nasl - Type : ACT_GATHER_INFO |
| 2013-09-04 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2013-187.nasl - Type : ACT_GATHER_INFO |
| 2013-08-30 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201308-06.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-0772.nasl - Type : ACT_GATHER_INFO |
| 2013-05-13 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2667.nasl - Type : ACT_GATHER_INFO |
| 2013-04-30 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-0772.nasl - Type : ACT_GATHER_INFO |
| 2013-04-26 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-0772.nasl - Type : ACT_GATHER_INFO |
| 2013-04-26 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130425_mysql_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2013-04-26 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1807-2.nasl - Type : ACT_GATHER_INFO |
| 2013-04-25 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1807-1.nasl - Type : ACT_GATHER_INFO |
| 2013-04-22 | Name : The remote database server may be affected by multiple vulnerabilities. File : mysql_5_1_69.nasl - Type : ACT_GATHER_INFO |
| 2013-04-22 | Name : The remote database server may be affected by multiple vulnerabilities. File : mysql_5_5_31.nasl - Type : ACT_GATHER_INFO |
| 2013-04-22 | Name : The remote database server may be affected by multiple vulnerabilities. File : mysql_5_6_11.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:31:49 |
|
| 2013-05-13 00:18:12 |
|
