Amazon Linux AMI : mysql Multiple Vulnerabilities (ALAS-2012-44)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote Amazon Linux AMI host is missing a security update.

Description :

This update fixes several vulnerabilities in the MySQL database
server. Information about these flaws can be found on the Oracle
Critical Patch Update Advisory page.

These updated packages upgrade MySQL to version 5.1.61. Refer to the
MySQL release notes for a full list of changes.

See also :

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-x.html
http://www.nessus.org/u?11da589e
http://www.nessus.org/u?8140e0ad

Solution :

Run 'yum upgrade mysql' to upgrade your system. After installing this
update, the MySQL server daemon (mysqld) will be restarted
automatically.

Risk factor :

Medium / CVSS Base Score : 5.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P)