Vulnerability in Mariadb
CVE-2014-4258
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRINFOSC.
EPSS: 0.006 (70.0th percentile) — read the EPSS interpretation.
Affected products
- Mariadb
- Opensuse_project Suse_linux_enterprise_desktop — versions 11.0
- Opensuse_project Suse_linux_enterprise_server — versions 11.0
- Opensuse_project Suse_linux_enterprise_software_development_kit — versions 11.0
- Oracle Mysql
- Oracle Solaris — versions 11.3
- Vmware Vcenter_server_appliance — versions 5.0, 5.1, 5.5
- Debian Debian_linux — versions 7.0
- Suse Linux_enterprise_desktop — versions 11, 12
- Suse Linux_enterprise_server — versions 11, 12
References
- secalert_us@oracle.com (x_refsource_CONFIRM, Third Party Advisory)
- 68564 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- oracle-cpujul2014-cve20144258(94620) (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_XF)
- 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (mailing-list, x_refsource_BUGTRAQ, Third Party Advisory, VDB Entry)
- 1030578 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK, Broken Link)
- SUSE-SU-2014:1072 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- SUSE-SU-2015:0743 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- DSA-2985 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- secalert_us@oracle.com (x_refsource_CONFIRM, Vendor Advisory)
- 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (mailing-list, x_refsource_FULLDISC, Mailing List, Third Party Advisory)