CVE-2013-3802
First published: Wed Jul 17 2013(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Full Text Search.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MySQL | >=5.1.0<=5.1.69 | |
| MySQL | >=5.5.0<=5.5.31 | |
| MySQL | >=5.6.0<=5.6.11 | |
| Mariadb Mariadb | >=5.5.0<5.5.32 | |
| Mariadb Mariadb | >=10.0.0<10.0.4 | |
| Debian GNU/Linux | =7.0 | |
| Ubuntu Linux | =10.04 | |
| Ubuntu Linux | =12.04 | |
| Ubuntu Linux | =12.10 | |
| Ubuntu Linux | =13.04 | |
| openSUSE | =11.4 | |
| openSUSE | =12.2 | |
| openSUSE | =12.3 | |
| SUSE Linux Enterprise Desktop with Beagle | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| suse linux enterprise server vmware | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.html
- http://osvdb.org/95325
- http://secunia.com/advisories/53372
- http://secunia.com/advisories/54300
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.debian.org/security/2013/dsa-2818
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
- http://www.securityfocus.com/bid/61244
- http://www.ubuntu.com/usn/USN-1909-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85712
Frequently Asked Questions
What is the severity of CVE-2013-3802?
CVE-2013-3802 is classified as a moderate severity vulnerability due to its potential impact on availability.
How do I fix CVE-2013-3802?
To remediate CVE-2013-3802, upgrade your MySQL installation to the latest stable version that is not susceptible to this vulnerability.
Which versions of MySQL are affected by CVE-2013-3802?
CVE-2013-3802 affects MySQL versions 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier.
Can CVE-2013-3802 be exploited remotely?
Yes, CVE-2013-3802 can be exploited by remote authenticated users to potentially affect the availability of the MySQL server.
Is MariaDB impacted by CVE-2013-3802?
Yes, versions of MariaDB prior to 5.5.32 and 10.0.4 are potentially impacted by CVE-2013-3802.
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/mysql
- version/mysql/5.1.0
- version/mysql/5.1.69
- version/mysql/5.5.0
- version/mysql/5.5.31
- version/mysql/5.6.0
- version/mysql/5.6.11
- vendor/mariadb
- canonical/mariadb mariadb
- version/mariadb mariadb/5.5.0
- version/mariadb mariadb/10.0.0
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/7.0
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/10.04
- version/ubuntu linux/12.04
- version/ubuntu linux/12.10
- version/ubuntu linux/13.04
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.2
- version/opensuse/12.3
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- canonical/suse linux enterprise server vmware
- version/suse linux enterprise server vmware/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/11-sp3