GLSA-201507-19 : MySQL: Multiple vulnerabilities

Medium Nessus Plugin ID 86088

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-201507-19 (MySQL: Multiple vulnerabilities)

Multiple vulnerabilities have been discovered in MySQL. Please review the CVE identifiers referenced below for details.
Impact :

A remote attacker could send a specially crafted request, possibly resulting in execution of arbitrary code with the privileges of the application or a Denial of Service condition.
Workaround :

There is no known workaround at this time.

Solution

All MySQL 5.5.x users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=dev-db/mysql-5.5.43' All MySQL 5.6.x users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=dev-db/mysql-5.6.24'

See Also

https://security.gentoo.org/glsa/201507-19

Plugin Details

Severity: Medium

ID: 86088

File Name: gentoo_GLSA-201507-19.nasl

Version: Revision: 2.1

Type: local

Published: 2015/09/23

Updated: 2015/09/23

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5.7

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:M/C:N/I:N/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:mysql, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2015/07/10

Reference Information

CVE: CVE-2015-0405, CVE-2015-0423, CVE-2015-0433, CVE-2015-0438, CVE-2015-0439, CVE-2015-0441, CVE-2015-0498, CVE-2015-0499, CVE-2015-0500, CVE-2015-0501, CVE-2015-0503, CVE-2015-0505, CVE-2015-0506, CVE-2015-0507, CVE-2015-0508, CVE-2015-0511, CVE-2015-2566, CVE-2015-2567, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573

BID: 70574, 72132, 72136, 72137, 72140, 72142, 72148, 72150, 72154, 72155, 72159, 72162, 72165, 72168, 72169, 72173, 72175, 72176, 74070, 74073, 74078, 74081, 74085, 74086, 74089, 74091, 74095, 74098, 74102, 74103, 74110, 74112, 74115, 74120, 74121, 74123, 74126, 74130, 74133

GLSA: 201507-19