Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-0001
HistoryJan 31, 2014 - 12:00 a.m.

CVE-2014-0001

2014-01-3100:00:00
ubuntu.com
ubuntu.com
11

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.952 High

EPSS

Percentile

99.4%

JSON

Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before
5.5.35 allows remote database servers to cause a denial of service (crash)
and possibly execute arbitrary code via a long server version string.

Bugs

Notes

Author Note
mdeslaur Looks like this was fixed in 5.5.37
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchmysql-5.5< 5.5.37-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchmysql-5.5< 5.5.37-0ubuntu0.12.10.1UNKNOWN
ubuntu13.10noarchmysql-5.5< 5.5.37-0ubuntu0.13.10.1UNKNOWN
ubuntu14.04noarchmysql-5.5< 5.5.37-0ubuntu0.14.04.1UNKNOWN
ubuntu14.10noarchmysql-5.5< 5.5.37-0ubuntu0.14.04.1UNKNOWN
ubuntu14.04noarchmysql-5.6< 5.6.17-0ubuntu0.14.04.1UNKNOWN

Related

nessus 22
cve 1
openvas 35
slackware 1
checkpoint_advisories 1
prion 1
nvd 1
cvelist 1
debian 3
osv 2
veracode 7
centos 4
oraclelinux 2
amazon 1
redhat 4
fedora 8
ubuntu 1
suse 1
gentoo 1
oracle 1
nessus
nessus
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : mariadb, mysql (SSA:2014-050-02)
2014-02-20 00:00:00
Debian DLA-75-1 : mysql-5.1 security update
2015-03-26 00:00:00
MySQL 5.5.x < 5.5.36 Multiple Vulnerabilities
2014-04-16 00:00:00
cve
cve
CVE-2014-0001
2014-01-31 23:55:04
openvas
openvas
Oracle MySQL Client Remote Buffer Overflow Vulnerability - Windows
2014-02-03 00:00:00
MariaDB Client Version Handling Remote Buffer Overflow Vulnerability - Windows
2014-02-03 00:00:00
Slackware: Security Advisory (SSA:2014-050-02)
2022-04-21 00:00:00
slackware
slackware
mariadb, mysql
2014-02-19 20:24:35
checkpoint_advisories
checkpoint_advisories
Oracle MySQL Client Heap Buffer Overflow (CVE-2014-0001)
2014-03-16 00:00:00
prion
prion
Buffer overflow
2014-01-31 23:55:00
nvd
nvd
CVE-2014-0001
2014-01-31 23:55:04
cvelist
cvelist
CVE-2014-0001
2014-01-31 23:00:00
debian
debian
[SECURITY] [DLA 75-1] mysql-5.1 security update
2014-10-22 06:46:31
[SECURITY] [DSA 2919-1] mysql-5.5 security update
2014-05-03 08:06:27
[SECURITY] [DSA 2919-1] mysql-5.5 security update
2014-05-03 08:06:27
osv
osv
mysql-5.1 - security update
2014-10-22 00:00:00
mysql-5.5 - security update
2014-05-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:56:40
Denial Of Service (DoS)
2019-05-02 04:56:40
Denial Of Service (DoS)
2019-05-02 04:56:40
centos
centos
mysql security update
2014-02-12 19:48:34
mysql55 security update
2014-02-19 13:53:22
mysql55 security update
2014-02-19 17:28:37
oraclelinux
oraclelinux
mysql security and bug fix update
2014-02-12 00:00:00
mysql55-mysql security update
2014-02-18 00:00:00
amazon
amazon
Medium: mysql51
2014-03-06 14:56:00
redhat
redhat
(RHSA-2014:0164) Moderate: mysql security and bug fix update
2014-02-12 00:00:00
(RHSA-2014:0186) Moderate: mysql55-mysql security update
2014-02-18 00:00:00
(RHSA-2014:0189) Moderate: mariadb55-mariadb security update
2014-02-19 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: community-mysql-5.5.37-1.fc19
2014-04-29 05:28:52
[SECURITY] Fedora 20 Update: community-mysql-5.5.37-1.fc20
2014-04-29 05:25:43
[SECURITY] Fedora 20 Update: community-mysql-5.5.41-1.fc20
2015-02-15 03:25:22
ubuntu
ubuntu
MySQL vulnerabilities
2014-04-23 00:00:00
suse
suse
Security update for MySQL (important)
2014-06-07 00:04:26
gentoo
gentoo
MySQL: Multiple vulnerabilities
2014-09-04 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2014
2014-04-15 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.952 High

EPSS

Percentile

99.4%

JSON
Related for UB:CVE-2014-0001
nessus22cve1openvas35slackware1checkpoint_advisories1prion1nvd1cvelist1debian3osv2veracode7centos4oraclelinux2amazon1redhat4fedora8ubuntu1suse1gentoo1oracle1