CVE-2012-3197
First published: Wed Oct 17 2012(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Replication.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MySQL | >=5.1.0<=5.1.64 | |
| MySQL | >=5.5.0<=5.5.26 | |
| MariaDB | >=5.1.0<5.1.66 | |
| MariaDB | >=5.5.0<5.5.27 | |
| Debian Linux | =6.0 | |
| Debian Linux | =7.0 | |
| Ubuntu | =10.04 | |
| Ubuntu | =11.10 | |
| Ubuntu | =12.04 | |
| Ubuntu | =12.10 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server EUS | =6.3 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://rhn.redhat.com/errata/RHSA-2012-1462.html
- http://secunia.com/advisories/51177
- http://secunia.com/advisories/51309
- http://secunia.com/advisories/53372
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.debian.org/security/2012/dsa-2581
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
- http://www.ubuntu.com/usn/USN-1621-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79393
Frequently Asked Questions
What is the severity of CVE-2012-3197?
CVE-2012-3197 is categorized as a moderate severity vulnerability affecting MySQL Server.
How do I fix CVE-2012-3197?
To mitigate CVE-2012-3197, upgrade MySQL to version 5.1.65 or 5.5.27 or later.
Who is affected by CVE-2012-3197?
CVE-2012-3197 affects remote authenticated users on MySQL Server versions 5.1.64 and earlier, and 5.5.26 and earlier.
What type of attack does CVE-2012-3197 facilitate?
CVE-2012-3197 allows remote authenticated users to potentially affect availability via unknown vectors related to Server Replication.
Is CVE-2012-3197 applicable to MariaDB?
Yes, CVE-2012-3197 affects certain versions of MariaDB that are based on the vulnerable MySQL versions.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/mysql
- version/mysql/5.1.0
- version/mysql/5.1.64
- version/mysql/5.5.0
- version/mysql/5.5.26
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.1.0
- version/mariadb/5.5.0
- vendor/debian
- canonical/debian linux
- version/debian linux/6.0
- version/debian linux/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/11.10
- version/ubuntu/12.04
- version/ubuntu/12.10
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/6.3
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0