SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387)

High Nessus Plugin ID 82428

Synopsis

The remote SuSE 11 host is missing one or more security updates.

Description

The MySQL datebase server was updated to 5.5.42, fixing various bugs and security issues.

More information can be found on :

- http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 42.html

- http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 41.html

- http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 40.html Also various issues with the mysql start script were fixed. (bsc#868673,bsc#878779)

Solution

Apply SAT patch number 10387.

CPE: p-cpe:/a:novell:suse_linux:11:libmysql55client18, p-cpe:/a:novell:suse_linux:11:libmysql55client18-32bit, p-cpe:/a:novell:suse_linux:11:libmysql55client_r18, p-cpe:/a:novell:suse_linux:11:libmysql55client_r18-32bit, p-cpe:/a:novell:suse_linux:11:libmysqlclient15, p-cpe:/a:novell:suse_linux:11:libmysqlclient15-32bit, p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15, p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15-32bit, p-cpe:/a:novell:suse_linux:11:mysql, p-cpe:/a:novell:suse_linux:11:mysql-client, p-cpe:/a:novell:suse_linux:11:mysql-tools, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2015/03/02

Exploitable With

Core Impact

Reference Information

CVE: CVE-2012-5615, CVE-2014-0224, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6474, CVE-2014-6478, CVE-2014-6484, CVE-2014-6489, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6564, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0385, CVE-2015-0391, CVE-2015-0409, CVE-2015-0411, CVE-2015-0432

SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387)

Synopsis

Description

Solution

See Also

Plugin Details

Risk Information

CVSSv2

Vulnerability Information

Exploitable With

Reference Information