CVE-2013-3804
First published: Wed Jul 17 2013(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MySQL | >=5.1.0<=5.1.69 | |
| MySQL | >=5.5.0<=5.5.31 | |
| MySQL | >=5.6.0<=5.6.11 | |
| Debian Linux | =7.0 | |
| Ubuntu | =10.04 | |
| Ubuntu | =12.04 | |
| Ubuntu | =12.10 | |
| Ubuntu | =13.04 | |
| MariaDB | >=5.5.0<5.5.32 | |
| MariaDB | >=10.0.0<10.0.4 | |
| openSUSE | =11.4 | |
| openSUSE | =12.2 | |
| openSUSE | =12.3 | |
| SUSE Linux Enterprise Desktop | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.html
- http://osvdb.org/95328
- http://secunia.com/advisories/53372
- http://secunia.com/advisories/54300
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.debian.org/security/2013/dsa-2818
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
- http://www.ubuntu.com/usn/USN-1909-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85715
Frequently Asked Questions
What is the severity of CVE-2013-3804?
CVE-2013-3804 has a severity rating that indicates it could impact the availability of MySQL Server for remote authenticated users.
How do I fix CVE-2013-3804?
To fix CVE-2013-3804, upgrade affected MySQL Server versions to versions beyond 5.1.69, 5.5.31, and 5.6.11.
What versions of MySQL are affected by CVE-2013-3804?
CVE-2013-3804 affects MySQL versions 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier.
Are there any workarounds for CVE-2013-3804?
There are no officially documented workarounds for CVE-2013-3804; updating is the recommended approach.
Which operating systems are impacted by CVE-2013-3804?
CVE-2013-3804 impacts various distributions such as Debian, Ubuntu, openSUSE, and SUSE Linux, depending on the MySQL versions installed.
- agent/references
- agent/type
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/mysql
- version/mysql/5.1.0
- version/mysql/5.1.69
- version/mysql/5.5.0
- version/mysql/5.5.31
- version/mysql/5.6.0
- version/mysql/5.6.11
- vendor/debian
- canonical/debian linux
- version/debian linux/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/12.04
- version/ubuntu/12.10
- version/ubuntu/13.04
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.5.0
- version/mariadb/10.0.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.2
- version/opensuse/12.3
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/11-sp3