CVE-2014-0412

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Affected Products (NVD)
VendorProductVersion
oraclemysql
5.1.0 ≤
𝑥
≤ 5.1.72
oraclemysql
5.5.0 ≤
𝑥
≤ 5.5.34
oraclemysql
5.6.0 ≤
𝑥
≤ 5.6.14
mariadbmariadb
5.5.0 ≤
𝑥
< 5.5.35
mariadbmariadb
10.0.0 ≤
𝑥
< 10.0.8
canonicalubuntu_linux
10.04
canonicalubuntu_linux
12.04
canonicalubuntu_linux
12.10
canonicalubuntu_linux
13.10
debiandebian_linux
6.0
debiandebian_linux
7.0
redhatenterprise_linux_desktop
5.0
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_eus
6.5
redhatenterprise_linux_server
5.0
redhatenterprise_linux_server
6.0
redhatenterprise_linux_server_aus
6.5
redhatenterprise_linux_server_tus
6.5
redhatenterprise_linux_workstation
5.0
redhatenterprise_linux_workstation
6.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mysql-5.5
lucid
dne
precise
Fixed 5.5.35-0ubuntu0.12.04.1
released
quantal
Fixed 5.5.35-0ubuntu0.12.10.1
released
raring
ignored
saucy
Fixed 5.5.35-0ubuntu0.13.10.1
released
mysql-dfsg-5.1
lucid
Fixed 5.1.73-0ubuntu0.10.04.1
released
precise
dne
quantal
dne
raring
dne
saucy
dne
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
mysql
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-bench
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-devel
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-embedded
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-embedded-devel
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-libs
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-server
RHEL 6
0:5.1.73-3.el6_5
fixed
mysql-test
RHEL 6
0:5.1.73-3.el6_5
fixed
References
http://osvdb.org/102067
http://rhn.redhat.com/errata/RHSA-2014-0164.html
http://rhn.redhat.com/errata/RHSA-2014-0173.html
http://rhn.redhat.com/errata/RHSA-2014-0186.html
http://rhn.redhat.com/errata/RHSA-2014-0189.html
http://secunia.com/advisories/56491
http://secunia.com/advisories/56541
http://secunia.com/advisories/56580
http://security.gentoo.org/glsa/glsa-201409-04.xml
http://ubuntu.com/usn/usn-2086-1
http://www.debian.org/security/2014/dsa-2845
http://www.debian.org/security/2014/dsa-2848
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64880
https://exchange.xforce.ibmcloud.com/vulnerabilities/90378
http://osvdb.org/102067
http://rhn.redhat.com/errata/RHSA-2014-0164.html
http://rhn.redhat.com/errata/RHSA-2014-0173.html
http://rhn.redhat.com/errata/RHSA-2014-0186.html
http://rhn.redhat.com/errata/RHSA-2014-0189.html
http://secunia.com/advisories/56491
http://secunia.com/advisories/56541
http://secunia.com/advisories/56580
http://security.gentoo.org/glsa/glsa-201409-04.xml
http://ubuntu.com/usn/usn-2086-1
http://www.debian.org/security/2014/dsa-2845
http://www.debian.org/security/2014/dsa-2848
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64880
https://exchange.xforce.ibmcloud.com/vulnerabilities/90378