CVE-2018-3282
First published: Wed Oct 17 2018(Updated: )
Last updated 24 July 2024
Credit: secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/mariadb-10.1 | <=10.1.20-1<=1:10.1.35-1<=10.1.26-0+deb9u1 | 10.1.37-0+deb9u1 1:10.1.37-1 |
| debian/mariadb-10.0 | ||
| debian/mysql-5.5 | ||
| debian/mysql-5.7 | ||
| redhat/mysql | <5.5.62 | 5.5.62 |
| redhat/mysql | <5.6.42 | 5.6.42 |
| redhat/mysql | <5.7.24 | 5.7.24 |
| redhat/mysql | <8.0.13 | 8.0.13 |
| redhat/mariadb | <5.5.62 | 5.5.62 |
| redhat/mariadb | <10.3.11 | 10.3.11 |
| redhat/mariadb | <10.2.19 | 10.2.19 |
| redhat/mariadb | <10.1.37 | 10.1.37 |
| redhat/mariadb | <10.0.37 | 10.0.37 |
| Oracle MySQL | >=5.5.0<=5.5.61 | |
| Oracle MySQL | >=5.6.0<=5.6.41 | |
| Oracle MySQL | >=5.7.0<=5.7.23 | |
| Oracle MySQL | >=8.0.0<=8.0.12 | |
| Netapp Active Iq Unified Manager Windows | >=7.3 | |
| Netapp Active Iq Unified Manager Vmware Vsphere | >=9.5 | |
| NetApp OnCommand Insight | ||
| NetApp OnCommand Workflow Automation | ||
| Netapp Snapcenter | ||
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =18.10 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Mariadb Mariadb | >=5.5.0<5.5.62 | |
| Mariadb Mariadb | >=10.0.0<10.0.37 | |
| Mariadb Mariadb | >=10.1.0<10.1.37 | |
| Mariadb Mariadb | >=10.2.0<10.2.19 | |
| Mariadb Mariadb | >=10.3.0<10.3.11 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Workstation | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://mariadb.com/kb/en/library/mariadb-10137-release-notes/
- https://security-tracker.debian.org/tracker/CVE-2018-3282
- https://security-tracker.debian.org/tracker/CVE-2016-9843
- https://security-tracker.debian.org/tracker/CVE-2018-3174
- https://security-tracker.debian.org/tracker/CVE-2018-3143
- https://security-tracker.debian.org/tracker/CVE-2018-3156
- https://security-tracker.debian.org/tracker/CVE-2018-3251
- https://bugs.debian.org/920581
- http://snapshot.debian.org/
- https://security-tracker.debian.org/tracker/CVE-2018-3066
- https://security-tracker.debian.org/tracker/CVE-2018-3064
- https://security-tracker.debian.org/tracker/CVE-2018-3063
- https://security-tracker.debian.org/tracker/CVE-2018-3058
- https://security-tracker.debian.org/tracker/CVE-2018-2819
- https://security-tracker.debian.org/tracker/CVE-2018-2817
- https://security-tracker.debian.org/tracker/CVE-2018-2813
- https://security-tracker.debian.org/tracker/CVE-2018-2787
- https://security-tracker.debian.org/tracker/CVE-2018-2784
- https://security-tracker.debian.org/tracker/CVE-2018-2782
- https://security-tracker.debian.org/tracker/CVE-2018-2781
- https://security-tracker.debian.org/tracker/CVE-2018-2771
- https://security-tracker.debian.org/tracker/CVE-2018-2767
- https://security-tracker.debian.org/tracker/CVE-2018-2766
- https://security-tracker.debian.org/tracker/CVE-2018-2761
- https://security-tracker.debian.org/tracker/CVE-2018-2755
- https://security-tracker.debian.org/tracker/CVE-2018-2668
- https://security-tracker.debian.org/tracker/CVE-2018-2665
- https://security-tracker.debian.org/tracker/CVE-2018-2640
- https://security-tracker.debian.org/tracker/CVE-2018-2622
- https://security-tracker.debian.org/tracker/CVE-2018-2612
- https://security-tracker.debian.org/tracker/CVE-2018-2562
- https://security-tracker.debian.org/tracker/CVE-2017-15365
- https://security-tracker.debian.org/tracker/CVE-2017-10378
- https://security-tracker.debian.org/tracker/CVE-2017-10268
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912848
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/105610
- http://www.securitytracker.com/id/1041888
- https://security.netapp.com/advisory/ntap-20181018-0002/
- https://usn.ubuntu.com/3799-1/
- https://usn.ubuntu.com/3799-2/
- https://lists.debian.org/debian-lts-announce/2018/11/msg00004.html
- https://lists.debian.org/debian-lts-announce/2018/11/msg00007.html
- https://www.debian.org/security/2018/dsa-4341
- https://access.redhat.com/errata/RHSA-2018:3655
- https://access.redhat.com/errata/RHSA-2019:1258
- https://access.redhat.com/errata/RHSA-2019:2327
- https://security.gentoo.org/glsa/201908-24
- https://launchpad.net/bugs/cve/CVE-2018-3282
- https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html#AppendixMSQL
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1640559
- https://bugzilla.redhat.com/show_bug.cgi?id=1640322
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3282
- https://nvd.nist.gov/vuln/detail/CVE-2018-3282
- https://ubuntu.com/security/CVE-2018-3282
Frequently Asked Questions
What is the vulnerability ID for this MySQL Server vulnerability?
The vulnerability ID for this MySQL Server vulnerability is CVE-2018-3282.
What is the severity level of CVE-2018-3282?
The severity level of CVE-2018-3282 is medium.
What is the affected software for CVE-2018-3282?
The affected software for CVE-2018-3282 is the MySQL Server component of Oracle MySQL.
Which versions of Oracle MySQL are affected?
The affected versions of Oracle MySQL are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior, and 8.0.12 and prior.
Where can I find more information about CVE-2018-3282?
You can find more information about CVE-2018-3282 on the Oracle website and the Debian security tracker.
- collector/debian-bugs
- alias/CVE-2018-3282
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/first-publish-date
- agent/author
- agent/remedy
- agent/severity
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/redhat-bugzilla
- source/Red Hat
- agent/description
- agent/references
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/usn-cve
- source/Ubuntu
- package-manager/debian
- package-manager/redhat
- vendor/oracle
- canonical/oracle mysql
- version/oracle mysql/5.5.0
- version/oracle mysql/5.5.61
- version/oracle mysql/5.6.0
- version/oracle mysql/5.6.41
- version/oracle mysql/5.7.0
- version/oracle mysql/5.7.23
- version/oracle mysql/8.0.0
- version/oracle mysql/8.0.12
- vendor/netapp
- canonical/netapp active iq unified manager windows
- version/netapp active iq unified manager windows/7.3
- canonical/netapp active iq unified manager vmware vsphere
- version/netapp active iq unified manager vmware vsphere/9.5
- canonical/netapp oncommand insight
- canonical/netapp oncommand workflow automation
- canonical/netapp snapcenter
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/18.10
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/mariadb
- canonical/mariadb mariadb
- version/mariadb mariadb/5.5.0
- version/mariadb mariadb/10.0.0
- version/mariadb mariadb/10.1.0
- version/mariadb mariadb/10.2.0
- version/mariadb mariadb/10.3.0
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/7.0