CVE-2012-5611: Buffer Overflow
First published: Mon Dec 03 2012(Updated: )
Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MariaDB | =5.1.41 | |
| MariaDB | =5.1.42 | |
| MariaDB | =5.1.44 | |
| MariaDB | =5.1.47 | |
| MariaDB | =5.1.49 | |
| MariaDB | =5.1.50 | |
| MariaDB | =5.1.51 | |
| MariaDB | =5.1.53 | |
| MariaDB | =5.1.55 | |
| MariaDB | =5.1.60 | |
| MariaDB | =5.1.61 | |
| MariaDB | =5.1.62 | |
| MariaDB | =5.2.0 | |
| MariaDB | =5.2.1 | |
| MariaDB | =5.2.2 | |
| MariaDB | =5.2.3 | |
| MariaDB | =5.2.4 | |
| MariaDB | =5.2.5 | |
| MariaDB | =5.2.6 | |
| MariaDB | =5.2.7 | |
| MariaDB | =5.2.8 | |
| MariaDB | =5.2.9 | |
| MariaDB | =5.2.10 | |
| MariaDB | =5.2.11 | |
| MariaDB | =5.2.12 | |
| MariaDB | =5.3.0 | |
| MariaDB | =5.3.1 | |
| MariaDB | =5.3.2 | |
| MariaDB | =5.3.3 | |
| MariaDB | =5.3.4 | |
| MariaDB | =5.3.5 | |
| MariaDB | =5.3.6 | |
| MariaDB | =5.3.7 | |
| MariaDB | =5.3.8 | |
| MariaDB | =5.3.9 | |
| MariaDB | =5.3.10 | |
| MariaDB | =5.5.20 | |
| MariaDB | =5.5.21 | |
| MariaDB | =5.5.22 | |
| MariaDB | =5.5.23 | |
| MariaDB | =5.5.24 | |
| MariaDB | =5.5.25 | |
| MariaDB | =5.5.27 | |
| MariaDB | =5.5.28 | |
| Oracle MySQL | =5.1.53 | |
| Oracle MySQL | =5.5.19 | |
| Linux | ||
| All of | ||
| Any of | ||
| MariaDB | =5.1.41 | |
| MariaDB | =5.1.42 | |
| MariaDB | =5.1.44 | |
| MariaDB | =5.1.47 | |
| MariaDB | =5.1.49 | |
| MariaDB | =5.1.50 | |
| MariaDB | =5.1.51 | |
| MariaDB | =5.1.53 | |
| MariaDB | =5.1.55 | |
| MariaDB | =5.1.60 | |
| MariaDB | =5.1.61 | |
| MariaDB | =5.1.62 | |
| MariaDB | =5.2.0 | |
| MariaDB | =5.2.1 | |
| MariaDB | =5.2.2 | |
| MariaDB | =5.2.3 | |
| MariaDB | =5.2.4 | |
| MariaDB | =5.2.5 | |
| MariaDB | =5.2.6 | |
| MariaDB | =5.2.7 | |
| MariaDB | =5.2.8 | |
| MariaDB | =5.2.9 | |
| MariaDB | =5.2.10 | |
| MariaDB | =5.2.11 | |
| MariaDB | =5.2.12 | |
| MariaDB | =5.3.0 | |
| MariaDB | =5.3.1 | |
| MariaDB | =5.3.2 | |
| MariaDB | =5.3.3 | |
| MariaDB | =5.3.4 | |
| MariaDB | =5.3.5 | |
| MariaDB | =5.3.6 | |
| MariaDB | =5.3.7 | |
| MariaDB | =5.3.8 | |
| MariaDB | =5.3.9 | |
| MariaDB | =5.3.10 | |
| MariaDB | =5.5.20 | |
| MariaDB | =5.5.21 | |
| MariaDB | =5.5.22 | |
| MariaDB | =5.5.23 | |
| MariaDB | =5.5.24 | |
| MariaDB | =5.5.25 | |
| MariaDB | =5.5.27 | |
| MariaDB | =5.5.28 | |
| MySQL | =5.1.53 | |
| MySQL | =5.5.19 | |
| Linux Kernel |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00000.html
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00013.html
- http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00020.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00000.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00010.html
- http://rhn.redhat.com/errata/RHSA-2012-1551.html
- http://rhn.redhat.com/errata/RHSA-2013-0180.html
- http://seclists.org/fulldisclosure/2012/Dec/4
- http://secunia.com/advisories/51443
- http://secunia.com/advisories/53372
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.debian.org/security/2012/dsa-2581
- http://www.exploit-db.com/exploits/23075
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:102
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.openwall.com/lists/oss-security/2012/12/02/3
- http://www.openwall.com/lists/oss-security/2012/12/02/4
- http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
- http://www.ubuntu.com/usn/USN-1658-1
- http://www.ubuntu.com/usn/USN-1703-1
- https://kb.askmonty.org/en/mariadb-5166-release-notes/
- https://kb.askmonty.org/en/mariadb-5213-release-notes/
- https://kb.askmonty.org/en/mariadb-5311-release-notes/
- https://kb.askmonty.org/en/mariadb-5528a-release-notes/
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16395
Frequently Asked Questions
What is the severity of CVE-2012-5611?
CVE-2012-5611 has been classified as a high-severity vulnerability due to the potential for remote code execution.
How do I fix CVE-2012-5611?
To fix CVE-2012-5611, you should upgrade to MySQL version 5.5.29 or later, or MariaDB version 5.5.28a or later.
What versions of MySQL are affected by CVE-2012-5611?
CVE-2012-5611 affects MySQL versions 5.5.19 to 5.5.28 and 5.1.53 to 5.1.66.
Which MariaDB versions are impacted by CVE-2012-5611?
CVE-2012-5611 affects MariaDB versions 5.1.53 through 5.1.66, 5.2.x before 5.2.13, 5.3.x before 5.3.11, and 5.5.2.x before 5.5.28a.
What is a stack-based buffer overflow in the context of CVE-2012-5611?
A stack-based buffer overflow in CVE-2012-5611 allows attackers to exploit the function acl_get, leading to potential execution of arbitrary code.
- agent/type
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.1.41
- version/mariadb/5.1.42
- version/mariadb/5.1.44
- version/mariadb/5.1.47
- version/mariadb/5.1.49
- version/mariadb/5.1.50
- version/mariadb/5.1.51
- version/mariadb/5.1.53
- version/mariadb/5.1.55
- version/mariadb/5.1.60
- version/mariadb/5.1.61
- version/mariadb/5.1.62
- version/mariadb/5.2.0
- version/mariadb/5.2.1
- version/mariadb/5.2.2
- version/mariadb/5.2.3
- version/mariadb/5.2.4
- version/mariadb/5.2.5
- version/mariadb/5.2.6
- version/mariadb/5.2.7
- version/mariadb/5.2.8
- version/mariadb/5.2.9
- version/mariadb/5.2.10
- version/mariadb/5.2.11
- version/mariadb/5.2.12
- version/mariadb/5.3.0
- version/mariadb/5.3.1
- version/mariadb/5.3.2
- version/mariadb/5.3.3
- version/mariadb/5.3.4
- version/mariadb/5.3.5
- version/mariadb/5.3.6
- version/mariadb/5.3.7
- version/mariadb/5.3.8
- version/mariadb/5.3.9
- version/mariadb/5.3.10
- version/mariadb/5.5.20
- version/mariadb/5.5.21
- version/mariadb/5.5.22
- version/mariadb/5.5.23
- version/mariadb/5.5.24
- version/mariadb/5.5.25
- version/mariadb/5.5.27
- version/mariadb/5.5.28
- vendor/oracle
- canonical/oracle mysql
- version/oracle mysql/5.1.53
- version/oracle mysql/5.5.19
- vendor/linux
- canonical/linux
- canonical/mysql
- version/mysql/5.1.53
- version/mysql/5.5.19
- canonical/linux kernel