Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2013-0375

Published: 16 January 2013

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.1.28 and earlier, allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Server Replication.

Notes

AuthorNote
jdstrand
mysql-cluster-7.0 not supported per Ubuntu Server team
As of 2012/01/09, Oracle no longer supports MySQL 5.0.
Unfortunately, because of upstream update and commit policies it is not
possible to backport patches from later releases. Ubuntu is regrettably
unable to support MySQL 5.0 and users are encouraged to upgrade to Ubuntu
10.04 LTS or later.

Priority

Medium

Cvss 3 Severity Score

5.4

Score breakdown

Status

Package Release Status
mysql-5.1
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid Does not exist

oneiric
Released (5.1.67-0ubuntu0.11.10.1)
precise Does not exist

quantal Does not exist

upstream
Released (5.1.67)
mysql-5.5
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid Does not exist

oneiric Does not exist

precise
Released (5.5.29-0ubuntu0.12.04.1)
quantal
Released (5.5.29-0ubuntu0.12.10.1)
upstream
Released (5.5.29)
mysql-cluster-7.0
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid Ignored

oneiric Ignored

precise Does not exist

quantal Does not exist

upstream Needs triage

mysql-dfsg-5.0
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

upstream Needs triage

mysql-dfsg-5.1
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid
Released (5.1.67-0ubuntu0.10.04.1)
oneiric Does not exist

precise Does not exist

quantal Does not exist

upstream
Released (5.1.67)

Severity score breakdown

Parameter Value
Base score 5.4
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Scope Unchanged
Confidentiality Low
Integrity impact Low
Availability impact None
Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N