What is CVE-2019-12301?

CVE-2019-12301 is a vulnerability in the Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu that could result in the server resetting the root password to a blank value during an upgrade.

What is the severity of CVE-2019-12301?

The severity of CVE-2019-12301 is critical with a CVSS score of 9.8.

How does CVE-2019-12301 affect Percona Server?

CVE-2019-12301 affects Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu by causing the server to reset the root password to a blank value upon upgrade.

How can I fix CVE-2019-12301?

To fix CVE-2019-12301, upgrade to Percona Server version 5.6.44-85.0-2 or higher.

Where can I find more information about CVE-2019-12301?

You can find more information about CVE-2019-12301 in the Percona Server bug report at https://jira.percona.com/browse/PS-5640 and the Percona blog post at https://www.percona.com/blog/2019/05/17/percona-server-for-mysql-5-6-44-85-0-is-now-available/

Vulnerability/
CVE-2019-12301

critical

23/5/2019

24/8/2020

CVE-2019-12301

First published: Thu May 23 2019(Updated: )

The Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu suffered an issue where the server would reset the root password to a blank value upon an upgrade. This was fixed in 5.6.44-85.0-2.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Percona Percona Server	=5.6.44-85.0-1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2019-12301?
CVE-2019-12301 is a vulnerability in the Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu that could result in the server resetting the root password to a blank value during an upgrade.
What is the severity of CVE-2019-12301?
The severity of CVE-2019-12301 is critical with a CVSS score of 9.8.
How does CVE-2019-12301 affect Percona Server?
CVE-2019-12301 affects Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu by causing the server to reset the root password to a blank value upon upgrade.
How can I fix CVE-2019-12301?
To fix CVE-2019-12301, upgrade to Percona Server version 5.6.44-85.0-2 or higher.
Where can I find more information about CVE-2019-12301?
You can find more information about CVE-2019-12301 in the Percona Server bug report at https://jira.percona.com/browse/PS-5640 and the Percona blog post at https://www.percona.com/blog/2019/05/17/percona-server-for-mysql-5-6-44-85-0-is-now-available/

collector/nvd-index
agent/severity
agent/author
agent/references
agent/description
agent/type
agent/tags
agent/event
vendor/percona
canonical/percona percona server
version/percona percona server/5.6.44-85.0-1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.