CVE-2013-0385

2013-01-1600:00:00

ubuntu.com

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:C/A:N

EPSS

0.001

Percentile

26.5%

JSON

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66
and earlier, and 5.5.28 and earlier, allows local users to affect
confidentiality and integrity via unknown vectors related to Server
Replication.

Bugs

<https://launchpad.net/bugs/1100264>

Notes

Author	Note
jdstrand	mysql-cluster-7.0 not supported per Ubuntu Server team As of 2012/01/09, Oracle no longer supports MySQL 5.0. Unfortunately, because of upstream update and commit policies it is not possible to backport patches from later releases. Ubuntu is regrettably unable to support MySQL 5.0 and users are encouraged to upgrade to Ubuntu 10.04 LTS or later.

OSVersionArchitecturePackageVersionFilename
ubuntu11.10noarchmysql-5.1< 5.1.67-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchmysql-5.5< 5.5.29-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchmysql-5.5< 5.5.29-0ubuntu0.12.10.1UNKNOWN
ubuntu10.04noarchmysql-dfsg-5.1< 5.1.67-0ubuntu0.10.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.10	noarch	mysql-5.1	< 5.1.67-0ubuntu0.11.10.1	UNKNOWN
ubuntu	12.04	noarch	mysql-5.5	< 5.5.29-0ubuntu0.12.04.1	UNKNOWN
ubuntu	12.10	noarch	mysql-5.5	< 5.5.29-0ubuntu0.12.10.1	UNKNOWN
ubuntu	10.04	noarch	mysql-dfsg-5.1	< 5.1.67-0ubuntu0.10.04.1	UNKNOWN