CVE-2015-0432

Опубликовано: 21 янв. 2015

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

Ссылки

http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
Mailing List
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0116.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0117.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0118.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1628.html
Third Party Advisory
http://secunia.com/advisories/62728
Permissions Required
Third Party Advisory
http://secunia.com/advisories/62730
Permissions Required
Third Party Advisory
http://secunia.com/advisories/62732
Permissions Required
Third Party Advisory
http://www.debian.org/security/2015/dsa-3135
Third Party Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Vendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Vendor Advisory
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/72217
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031581
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-2480-1
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/100187
Third Party Advisory
VDB Entry
https://security.gentoo.org/glsa/201504-05
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Конфигурация 3

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Версия от 5.5.0 (включая) до 5.5.40 (включая)

Конфигурация 4

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Конфигурация 5

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Конфигурация 6

Одно из

cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*

Конфигурация 7

Одно из

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Версия от 5.5.0 (включая) до 5.5.41 (исключая)

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Версия от 10.0.0 (включая) до 10.0.16 (исключая)

EPSS

Процентиль: 47%

0.00237

Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2015-0432

ubuntu

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

CVE-2015-0432

redhat

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

CVE-2015-0432

debian

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier al ...

GHSA-5rvr-64v7-jvww

github

около 3 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

ELSA-2015-0118

oracle-oval

больше 10 лет назад

ELSA-2015-0118: mariadb security update (MODERATE)

EPSS

Процентиль: 47%

0.00237

Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo