SuSE 11.3 Security Update : MySQL (SAT Patch Number 9624)

medium Nessus Plugin ID 77435

Synopsis

The remote SuSE 11 host is missing one or more security updates.

Description

This MySQL update provides the following :

- upgrade to version 5.5.39, [bnc#887580]

- CVE's fixed: (CVE-2014-2484 / CVE-2014-4258 / CVE-2014-4260 / CVE-2014-2494 / CVE-2014-4238 / CVE-2014-4207 / CVE-2014-4233 / CVE-2014-4240 / CVE-2014-4214 / CVE-2014-4243) See also:
http://www.oracle.com/technetwork/topics/security/cpujul 2014-1972956.html

Solution

Apply SAT patch number 9624.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=887580

http://support.novell.com/security/cve/CVE-2014-2484.html

http://support.novell.com/security/cve/CVE-2014-2494.html

http://support.novell.com/security/cve/CVE-2014-4207.html

http://support.novell.com/security/cve/CVE-2014-4214.html

http://support.novell.com/security/cve/CVE-2014-4233.html

http://support.novell.com/security/cve/CVE-2014-4238.html

http://support.novell.com/security/cve/CVE-2014-4240.html

http://support.novell.com/security/cve/CVE-2014-4243.html

http://support.novell.com/security/cve/CVE-2014-4258.html

http://support.novell.com/security/cve/CVE-2014-4260.html

Plugin Details

Severity: Medium

ID: 77435

File Name: suse_11_libmysql55client18-140820.nasl

Version: 1.5

Type: local

Agent: unix

Published: 8/29/2014

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:libmysql55client18, p-cpe:/a:novell:suse_linux:11:libmysql55client18-32bit, p-cpe:/a:novell:suse_linux:11:libmysql55client_r18, p-cpe:/a:novell:suse_linux:11:libmysqlclient15, p-cpe:/a:novell:suse_linux:11:libmysqlclient15-32bit, p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15, p-cpe:/a:novell:suse_linux:11:mysql, p-cpe:/a:novell:suse_linux:11:mysql-client, p-cpe:/a:novell:suse_linux:11:mysql-tools, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 8/20/2014

Reference Information

CVE: CVE-2014-2484, CVE-2014-2494, CVE-2014-4207, CVE-2014-4214, CVE-2014-4233, CVE-2014-4238, CVE-2014-4240, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260