CVE-2013-3809
First published: Wed Jul 17 2013(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Audit Log.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MySQL | >=5.5.0<=5.5.31 | |
| MySQL | >=5.6.0<=5.6.11 | |
| Oracle Solaris SPARC | =11.3 | |
| openSUSE | =11.4 | |
| openSUSE | =12.2 | |
| openSUSE | =12.3 | |
| SUSE Linux Enterprise Desktop with Beagle | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| suse linux enterprise server vmware | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp3 | |
| Ubuntu Linux | =10.04 | |
| Ubuntu Linux | =12.04 | |
| Ubuntu Linux | =12.10 | |
| Ubuntu Linux | =13.04 | |
| Mariadb Mariadb | >=5.5.0<5.5.32 | |
| Mariadb Mariadb | >=10.0.0<10.0.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.html
- http://osvdb.org/95322
- http://secunia.com/advisories/54300
- http://www.debian.org/security/2013/dsa-2818
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
- http://www.ubuntu.com/usn/USN-1909-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85709
Frequently Asked Questions
What is the severity of CVE-2013-3809?
CVE-2013-3809 is classified as a medium severity vulnerability, affecting the integrity of MySQL server operations.
How do I fix CVE-2013-3809?
To fix CVE-2013-3809, upgrade to MySQL version 5.5.32 or higher, or 5.6.12 or higher, to ensure that the vulnerability is mitigated.
Which versions of MySQL are affected by CVE-2013-3809?
CVE-2013-3809 affects MySQL versions 5.5.31 and earlier, as well as 5.6.11 and earlier.
What type of vulnerability is CVE-2013-3809?
CVE-2013-3809 is an unspecified vulnerability that allows remote authenticated users to impact the integrity of the MySQL server via unknown vectors related to the Audit Log.
Are there any workarounds for CVE-2013-3809?
There are no specific workarounds published for CVE-2013-3809; the recommended action is to update to a secure version.
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/mysql
- version/mysql/5.5.0
- version/mysql/5.5.31
- version/mysql/5.6.0
- version/mysql/5.6.11
- canonical/oracle solaris sparc
- version/oracle solaris sparc/11.3
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.2
- version/opensuse/12.3
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- canonical/suse linux enterprise server vmware
- version/suse linux enterprise server vmware/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/11-sp3
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/10.04
- version/ubuntu linux/12.04
- version/ubuntu linux/12.10
- version/ubuntu linux/13.04
- vendor/mariadb
- canonical/mariadb mariadb
- version/mariadb mariadb/5.5.0
- version/mariadb mariadb/10.0.0