English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.122583
Category:Oracle Linux Local Security Checks
Title:Oracle: Security Advisory (ELSA-2008-0364)
Summary:The remote host is missing an update for the 'mysql' package(s) announced via the ELSA-2008-0364 advisory.
Description:Summary:
The remote host is missing an update for the 'mysql' package(s) announced via the ELSA-2008-0364 advisory.

Vulnerability Insight:
[5.0.45-7]
- Adjust thread stack requests to allow for platform-specific guard page size,
necessary to prevent stack overrun on PPC with RHEL5's 64K page size.
Resolves: #435391
- Remove calendar-dependent queries from 'view' test, necessary to get
regression tests to pass after 2007.

[5.0.45-6]
- Back-port upstream fixes for CVE-2007-5925, CVE-2007-5969, CVE-2007-6303.
Resolves: #422211

[5.0.45-1]
- Update to MySQL 5.0.45
Resolves: #256501, #240813, #246309, #254012
Resolves: #280811, #316451, #349121, #367131
- Synchronize with current Fedora package, which is pretty well tested by now,
see past bzs 245770, 241912, 233771, 221085, 223713, 203910, 193559, 199368

[5.0.22-3]
- Fix CVE-2007-3780: remote DOS via bad password length byte
Resolves: #257681

Affected Software/OS:
'mysql' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
6.5

CVSS Vector:
AV:N/AC:L/Au:S/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-0903
1015693
http://securitytracker.com/id?1015693
16850
http://www.securityfocus.com/bid/16850
19034
http://secunia.com/advisories/19034
19502
http://secunia.com/advisories/19502
19814
http://secunia.com/advisories/19814
20060225 mysql <= 5.0.18
http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0653.html
20241
http://secunia.com/advisories/20241
20253
http://secunia.com/advisories/20253
20333
http://secunia.com/advisories/20333
20625
http://secunia.com/advisories/20625
30351
http://secunia.com/advisories/30351
ADV-2006-0752
http://www.vupen.com/english/advisories/2006/0752
DSA-1071
http://www.debian.org/security/2006/dsa-1071
DSA-1073
http://www.debian.org/security/2006/dsa-1073
DSA-1079
http://www.debian.org/security/2006/dsa-1079
MDKSA-2006:064
http://www.mandriva.com/security/advisories?name=MDKSA-2006:064
RHSA-2006:0544
http://www.redhat.com/support/errata/RHSA-2006-0544.html
RHSA-2007:0083
http://www.redhat.com/support/errata/RHSA-2007-0083.html
RHSA-2008:0364
http://www.redhat.com/support/errata/RHSA-2008-0364.html
USN-274-1
https://usn.ubuntu.com/274-1/
USN-274-2
http://www.ubuntu.com/usn/usn-274-2
http://bugs.mysql.com/bug.php?id=17667
http://rst.void.ru/papers/advisory39.txt
mysql-query-log-bypass-security(24966)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24966
oval:org.mitre.oval:def:9915
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9915
Common Vulnerability Exposure (CVE) ID: CVE-2006-4031
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
BugTraq ID: 19279
http://www.securityfocus.com/bid/19279
Cert/CC Advisory: TA07-072A
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:149
http://bugs.mysql.com/bug.php?id=15195
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10468
http://www.redhat.com/support/errata/RHSA-2008-0768.html
http://securitytracker.com/id?1016617
http://secunia.com/advisories/21259
http://secunia.com/advisories/21382
http://secunia.com/advisories/21627
http://secunia.com/advisories/21685
http://secunia.com/advisories/21770
http://secunia.com/advisories/22080
http://secunia.com/advisories/24479
http://secunia.com/advisories/31226
SuSE Security Announcement: SUSE-SR:2006:023 (Google Search)
http://www.novell.com/linux/security/advisories/2006_23_sr.html
http://www.ubuntu.com/usn/usn-338-1
http://www.vupen.com/english/advisories/2006/3079
http://www.vupen.com/english/advisories/2007/0930
Common Vulnerability Exposure (CVE) ID: CVE-2006-4227
BugTraq ID: 19559
http://www.securityfocus.com/bid/19559
http://lists.mysql.com/commits/7918
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10105
http://securitytracker.com/id?1016709
http://secunia.com/advisories/21506
http://www.vupen.com/english/advisories/2006/3306
XForce ISS Database: mysql-grant-execute-privilege-escalation(28442)
https://exchange.xforce.ibmcloud.com/vulnerabilities/28442
Common Vulnerability Exposure (CVE) ID: CVE-2006-7232
BugTraq ID: 28351
http://www.securityfocus.com/bid/28351
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11720
http://secunia.com/advisories/29443
http://secunia.com/advisories/31687
SuSE Security Announcement: SUSE-SR:2008:017 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://www.ubuntu.com/usn/usn-588-1
Common Vulnerability Exposure (CVE) ID: CVE-2007-1420
BugTraq ID: 22900
http://www.securityfocus.com/bid/22900
Bugtraq: 20070309 SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service (Google Search)
http://www.securityfocus.com/archive/1/462339/100/0/threaded
http://security.gentoo.org/glsa/glsa-200705-11.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:139
http://www.sec-consult.com/284.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9530
http://www.securitytracker.com/id?1017746
http://secunia.com/advisories/24483
http://secunia.com/advisories/24609
http://secunia.com/advisories/25196
http://secunia.com/advisories/25389
http://secunia.com/advisories/25946
http://securityreason.com/securityalert/2413
http://www.ubuntu.com/usn/usn-440-1
http://www.vupen.com/english/advisories/2007/0908
Common Vulnerability Exposure (CVE) ID: CVE-2007-2583
BugTraq ID: 23911
http://www.securityfocus.com/bid/23911
Debian Security Information: DSA-1413 (Google Search)
http://www.debian.org/security/2007/dsa-1413
http://www.exploit-db.com/exploits/30020
http://packetstormsecurity.com/files/124295/MySQL-5.0.x-Denial-Of-Service.html
http://www.osvdb.org/34734
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9930
http://secunia.com/advisories/25188
http://secunia.com/advisories/25255
http://secunia.com/advisories/27155
http://secunia.com/advisories/27823
http://secunia.com/advisories/28838
SuSE Security Announcement: SUSE-SR:2008:003 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
http://www.trustix.org/errata/2007/0017/
https://usn.ubuntu.com/528-1/
http://www.vupen.com/english/advisories/2007/1731
XForce ISS Database: mysql-if-dos(34232)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34232
Common Vulnerability Exposure (CVE) ID: CVE-2007-2691
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
BugTraq ID: 24016
http://www.securityfocus.com/bid/24016
BugTraq ID: 31681
http://www.securityfocus.com/bid/31681
Bugtraq: 20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server (Google Search)
http://www.securityfocus.com/archive/1/473874/100/0/threaded
http://bugs.mysql.com/bug.php?id=27515
http://lists.mysql.com/announce/470
http://osvdb.org/34766
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9559
http://www.redhat.com/support/errata/RHSA-2007-0894.html
http://www.securitytracker.com/id?1018069
http://secunia.com/advisories/25301
http://secunia.com/advisories/26073
http://secunia.com/advisories/26430
http://secunia.com/advisories/32222
http://www.vupen.com/english/advisories/2007/1804
http://www.vupen.com/english/advisories/2008/2780
XForce ISS Database: mysql-renametable-weak-security(34347)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34347
Common Vulnerability Exposure (CVE) ID: CVE-2007-2692
BugTraq ID: 24011
http://www.securityfocus.com/bid/24011
http://www.mandriva.com/security/advisories?name=MDVSA-2008:028
http://bugs.mysql.com/bug.php?id=27337
http://osvdb.org/34765
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166
http://www.securitytracker.com/id?1018070
http://secunia.com/advisories/28637
XForce ISS Database: mysql-changedb-privilege-escalation(34348)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34348
Common Vulnerability Exposure (CVE) ID: CVE-2007-3781
BugTraq ID: 25017
http://www.securityfocus.com/bid/25017
Debian Security Information: DSA-1451 (Google Search)
http://www.debian.org/security/2008/dsa-1451
http://security.gentoo.org/glsa/glsa-200708-10.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:243
http://bugs.mysql.com/bug.php?id=25578
http://osvdb.org/37783
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9195
http://secunia.com/advisories/26498
http://secunia.com/advisories/26987
http://secunia.com/advisories/28040
http://secunia.com/advisories/28108
http://secunia.com/advisories/28128
http://secunia.com/advisories/28343
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959
https://usn.ubuntu.com/559-1/
Common Vulnerability Exposure (CVE) ID: CVE-2007-3782
http://www.mandriva.com/security/advisories?name=MDKSA-2007:177
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10563
http://securitytracker.com/id?1018663
http://secunia.com/advisories/26710
SuSE Security Announcement: SUSE-SR:2007:019 (Google Search)
http://www.novell.com/linux/security/advisories/2007_19_sr.html
CopyrightCopyright (C) 2015 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.