Gentoo Archives: gentoo-announce

From: Sergey Popov <pinkbyte@g.o>
To: gentoo-announce@g.o
Subject: [gentoo-announce] ERRATA: [ GLSA 201308-06 ] MySQL: Multiple vulnerabilities
Date: Fri, 30 Aug 2013 10:42:26
Message-Id: 5220762C.3020808@gentoo.org
1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2 Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 201308-06:02
3 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4 http://security.gentoo.org/
5 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7 Severity: High
8 Title: MySQL: Multiple vulnerabilities
9 Date: August 29, 2013
10 Updated: August 30, 2013
11 Bugs: #399375, #411503, #412889, #417989, #445602, #462498,
12 #466236, #477474
13 ID: 201308-06:02
14
15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
16
17 Errata
18 ======
19
20 The references section of the original advisory contained wrong CVE
21 references.
22
23 CVE-2012-1492, CVE-2012-1623 should be interpreted as CVE-2013-1492
24 and CVE-2013-1623 accordingly.
25
26 The corrected sections appear below.
27
28 References
29 ==========
30
31 [ 1 ] CVE-2011-2262
32 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2262
33 [ 2 ] CVE-2012-0075
34 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0075
35 [ 3 ] CVE-2012-0087
36 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0087
37 [ 4 ] CVE-2012-0101
38 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0101
39 [ 5 ] CVE-2012-0102
40 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0102
41 [ 6 ] CVE-2012-0112
42 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0112
43 [ 7 ] CVE-2012-0113
44 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0113
45 [ 8 ] CVE-2012-0114
46 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0114
47 [ 9 ] CVE-2012-0115
48 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0115
49 [ 10 ] CVE-2012-0116
50 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0116
51 [ 11 ] CVE-2012-0117
52 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0117
53 [ 12 ] CVE-2012-0118
54 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0118
55 [ 13 ] CVE-2012-0119
56 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0119
57 [ 14 ] CVE-2012-0120
58 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0120
59 [ 15 ] CVE-2012-0484
60 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0484
61 [ 16 ] CVE-2012-0485
62 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0485
63 [ 17 ] CVE-2012-0486
64 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0486
65 [ 18 ] CVE-2012-0487
66 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0487
67 [ 19 ] CVE-2012-0488
68 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0488
69 [ 20 ] CVE-2012-0489
70 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0489
71 [ 21 ] CVE-2012-0490
72 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0490
73 [ 22 ] CVE-2012-0491
74 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0491
75 [ 23 ] CVE-2012-0492
76 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0492
77 [ 24 ] CVE-2012-0493
78 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0493
79 [ 25 ] CVE-2012-0494
80 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0494
81 [ 26 ] CVE-2012-0495
82 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0495
83 [ 27 ] CVE-2012-0496
84 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0496
85 [ 28 ] CVE-2012-0540
86 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0540
87 [ 29 ] CVE-2012-0553
88 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0553
89 [ 30 ] CVE-2012-0572
90 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0572
91 [ 31 ] CVE-2012-0574
92 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0574
93 [ 32 ] CVE-2012-0578
94 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0578
95 [ 33 ] CVE-2012-0583
96 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0583
97 [ 34 ] CVE-2012-1688
98 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1688
99 [ 35 ] CVE-2012-1689
100 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1689
101 [ 36 ] CVE-2012-1690
102 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1690
103 [ 37 ] CVE-2012-1696
104 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1696
105 [ 38 ] CVE-2012-1697
106 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1697
107 [ 39 ] CVE-2012-1702
108 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1702
109 [ 40 ] CVE-2012-1703
110 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1703
111 [ 41 ] CVE-2012-1705
112 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1705
113 [ 42 ] CVE-2012-1734
114 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1734
115 [ 43 ] CVE-2012-2102
116 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2102
117 [ 44 ] CVE-2012-2122
118 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2122
119 [ 45 ] CVE-2012-2749
120 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2749
121 [ 46 ] CVE-2012-3150
122 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3150
123 [ 47 ] CVE-2012-3158
124 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3158
125 [ 48 ] CVE-2012-3160
126 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3160
127 [ 49 ] CVE-2012-3163
128 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3163
129 [ 50 ] CVE-2012-3166
130 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3166
131 [ 51 ] CVE-2012-3167
132 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3167
133 [ 52 ] CVE-2012-3173
134 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3173
135 [ 53 ] CVE-2012-3177
136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3177
137 [ 54 ] CVE-2012-3180
138 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3180
139 [ 55 ] CVE-2012-3197
140 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3197
141 [ 56 ] CVE-2012-5060
142 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5060
143 [ 57 ] CVE-2012-5096
144 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5096
145 [ 58 ] CVE-2012-5611
146 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5611
147 [ 59 ] CVE-2012-5612
148 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5612
149 [ 60 ] CVE-2012-5613
150 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5613
151 [ 61 ] CVE-2012-5614
152 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5614
153 [ 62 ] CVE-2012-5615
154 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5615
155 [ 63 ] CVE-2012-5627
156 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5627
157 [ 64 ] CVE-2013-0367
158 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0367
159 [ 65 ] CVE-2013-0368
160 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0368
161 [ 66 ] CVE-2013-0371
162 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0371
163 [ 67 ] CVE-2013-0375
164 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0375
165 [ 68 ] CVE-2013-0383
166 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0383
167 [ 69 ] CVE-2013-0384
168 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0384
169 [ 70 ] CVE-2013-0385
170 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0385
171 [ 71 ] CVE-2013-0386
172 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0386
173 [ 72 ] CVE-2013-0389
174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0389
175 [ 73 ] CVE-2013-1492
176 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1492
177 [ 74 ] CVE-2013-1502
178 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1502
179 [ 75 ] CVE-2013-1506
180 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1506
181 [ 76 ] CVE-2013-1511
182 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1511
183 [ 77 ] CVE-2013-1512
184 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1512
185 [ 78 ] CVE-2013-1521
186 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1521
187 [ 79 ] CVE-2013-1523
188 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1523
189 [ 80 ] CVE-2013-1526
190 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1526
191 [ 81 ] CVE-2013-1531
192 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1531
193 [ 82 ] CVE-2013-1532
194 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1532
195 [ 83 ] CVE-2013-1544
196 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1544
197 [ 84 ] CVE-2013-1548
198 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1548
199 [ 85 ] CVE-2013-1552
200 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1552
201 [ 86 ] CVE-2013-1555
202 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1555
203 [ 87 ] CVE-2013-1566
204 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1566
205 [ 88 ] CVE-2013-1567
206 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1567
207 [ 89 ] CVE-2013-1570
208 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1570
209 [ 90 ] CVE-2013-1623
210 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1623
211 [ 91 ] CVE-2013-2375
212 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2375
213 [ 92 ] CVE-2013-2376
214 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2376
215 [ 93 ] CVE-2013-2378
216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2378
217 [ 94 ] CVE-2013-2381
218 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2381
219 [ 95 ] CVE-2013-2389
220 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2389
221 [ 96 ] CVE-2013-2391
222 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2391
223 [ 97 ] CVE-2013-2392
224 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2392
225 [ 98 ] CVE-2013-2395
226 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2395
227 [ 99 ] CVE-2013-3802
228 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3802
229 [ 100 ] CVE-2013-3804
230 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3804
231 [ 101 ] CVE-2013-3808
232 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3808
233
234
235 Availability
236 ============
237
238 This GLSA and any updates to it are available for viewing at
239 the Gentoo Security Website:
240
241 http://security.gentoo.org/glsa/glsa-201308-06.xml
242
243 Concerns?
244 =========
245
246 Security is a primary focus of Gentoo Linux and ensuring the
247 confidentiality and security of our users' machines is of utmost
248 importance to us. Any security concerns should be addressed to
249 security@g.o or alternatively, you may file a bug at
250 https://bugs.gentoo.org.
251
252 License
253 =======
254
255 Copyright 2013 Gentoo Foundation, Inc; referenced text
256 belongs to its owner(s).
257
258 The contents of this document are licensed under the
259 Creative Commons - Attribution / Share Alike license.
260
261 http://creativecommons.org/licenses/by-sa/2.5

Attachments

File name MIME type
signature.asc application/pgp-signature