CVE-2017-3302

Опубликовано: 12 фев. 2017

Источник: debian

EPSS Низкий

Описание

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.

Пакеты

Пакет	Статус	Версия исправления	Тип
mariadb-10.1	fixed	10.1.23-1	package
mariadb-10.0	removed		package
mysql-5.7	not-affected		package
mysql-5.6	not-affected		package
mysql-5.5	removed		package

Примечания

Fixed by: https://github.com/mysql/mysql-server/commit/4797ea0b772d5f4c5889bc552424132806f46e93
Fixed in Oracle MySQL 5.6.21, 5.7.5
https://bugs.mysql.com/bug.php?id=70429
https://bugs.mysql.com/bug.php?id=63363
https://www.openwall.com/lists/oss-security/2017/01/28/1

EPSS

Процентиль: 81%

0.01694

Низкий

Связанные уязвимости

CVE-2017-3302

CVSS3: 7.5

ubuntu

больше 8 лет назад

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.

CVE-2017-3302

CVSS3: 7.5

redhat

больше 8 лет назад

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.

CVE-2017-3302

CVSS3: 7.5

nvd

больше 8 лет назад

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.

GHSA-77pr-jpcv-9w4v

CVSS3: 7.5

github

около 3 лет назад

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.

openSUSE-SU-2017:1475-1

suse-cvrf

около 8 лет назад

Security update for mariadb

EPSS

Процентиль: 81%

0.01694

Низкий