CVE-2013-3808
First published: Wed Jul 17 2013(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MySQL | >=5.1.0<=5.1.68 | |
| MySQL | >=5.5.0<=5.5.30 | |
| MySQL | >=5.6.0<=5.6.10 | |
| Mariadb Mariadb | >=5.5.0<5.5.31 | |
| Mariadb Mariadb | >=10.0.0<10.0.3 | |
| openSUSE | =11.4 | |
| openSUSE | =12.2 | |
| openSUSE | =12.3 | |
| SUSE Linux Enterprise Desktop with Beagle | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| suse linux enterprise server vmware | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.html
- http://osvdb.org/95330
- http://secunia.com/advisories/53372
- http://security.gentoo.org/glsa/glsa-201308-06.xml
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85717
Frequently Asked Questions
What is the severity of CVE-2013-3808?
CVE-2013-3808 is considered to have a moderate impact on availability for affected MySQL server versions.
How do I fix CVE-2013-3808?
To mitigate CVE-2013-3808, upgrade your MySQL server to a version that is not vulnerable, specifically above 5.1.68, 5.5.30, or 5.6.10.
Which versions of MySQL are affected by CVE-2013-3808?
CVE-2013-3808 affects MySQL versions 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 and earlier.
Is CVE-2013-3808 applicable to MariaDB?
Yes, CVE-2013-3808 affects certain versions of MariaDB, specifically those before 5.5.31 and 10.0.3.
What components are impacted by CVE-2013-3808?
CVE-2013-3808 impacts the MySQL Server component, allowing attackers to affect server availability.
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/mysql
- version/mysql/5.1.0
- version/mysql/5.1.68
- version/mysql/5.5.0
- version/mysql/5.5.30
- version/mysql/5.6.0
- version/mysql/5.6.10
- vendor/mariadb
- canonical/mariadb mariadb
- version/mariadb mariadb/5.5.0
- version/mariadb mariadb/10.0.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.2
- version/opensuse/12.3
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- canonical/suse linux enterprise server vmware
- version/suse linux enterprise server vmware/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/11-sp3