CVE-2012-3167
First published: Wed Oct 17 2012(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Full Text Search.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle MySQL | >=5.1.0<=5.1.63 | |
| Oracle MySQL | >=5.5.0<=5.5.25 | |
| Debian | =6.0 | |
| Debian | =7.0 | |
| Ubuntu | =10.04 | |
| Ubuntu | =11.10 | |
| Ubuntu | =12.04 | |
| Ubuntu | =12.10 | |
| MariaDB | >=5.1.0<5.1.66 | |
| MariaDB | >=5.5.0<5.5.27 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server EUS | =6.3 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://rhn.redhat.com/errata/RHSA-2012-1462.html
- http://secunia.com/advisories/51177
- http://secunia.com/advisories/51309
- http://secunia.com/advisories/53372
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.debian.org/security/2012/dsa-2581
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
- http://www.ubuntu.com/usn/USN-1621-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79392
Frequently Asked Questions
What is the severity of CVE-2012-3167?
CVE-2012-3167 has a moderate severity rating due to its potential to affect availability.
How do I fix CVE-2012-3167?
To mitigate CVE-2012-3167, upgrade to MySQL 5.1.64 or 5.5.28 or later versions.
What versions are affected by CVE-2012-3167?
CVE-2012-3167 affects MySQL versions 5.1.63 and earlier, and 5.5.25 and earlier.
Who is impacted by CVE-2012-3167?
Remote authenticated users of the affected MySQL versions can exploit CVE-2012-3167.
What is the vector of CVE-2012-3167?
The exact vector for CVE-2012-3167 is unspecified but relates to Server Full Text Search.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle mysql
- version/oracle mysql/5.1.0
- version/oracle mysql/5.1.63
- version/oracle mysql/5.5.0
- version/oracle mysql/5.5.25
- vendor/debian
- canonical/debian
- version/debian/6.0
- version/debian/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/11.10
- version/ubuntu/12.04
- version/ubuntu/12.10
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.1.0
- version/mariadb/5.5.0
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/6.3
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0