CentOS Update For Mysql CESA-2012:1551 Centos6 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. (CVE-2012-5611) All MySQL users should upgrade to these updated packages, which correct this issue. After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.

Affected

mysql on CentOS 6

References

http://lists.centos.org/pipermail/centos-announce/2012-December/019026.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-5611

CVSS	Base Score: 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

CentOS Update for 4Suite CESA-2009:1572 centos4 i386
CentOS Security Advisory CESA-2009:1648 (ntp)
CentOS Update for abrt CESA-2013:0215 centos6
CentOS Security Advisory CESA-2009:1529 (samba)
CentOS Security Advisory CESA-2009:1452 (neon)

CentOS Update for mysql CESA-2012:1551 centos6

Take action and discover your vulnerabilities