Oracle MySQL Server Multiple Security Vulnerabilities
BID:104766
CVE-2018-3058 | CVE-2018-3066 | CVE-2018-3070 |Info
Oracle MySQL Server Multiple Security Vulnerabilities
| Bugtraq ID: | 104766 |
| Class: | Unknown |
| CVE: |
CVE-2018-3070 CVE-2018-3058 CVE-2018-3066 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 17 2018 12:00AM |
| Updated: | Jan 17 2019 10:00AM |
| Credit: | Oracle |
| Vulnerable: |
Redhat Software Collections for RHEL 0 Redhat OpenStack Platform 9.0 Redhat OpenStack Platform 8.0 (Liberty) Redhat OpenStack Platform 8.0 Redhat OpenStack Platform 13 Redhat OpenStack Platform 12 Redhat OpenStack Platform 10 Redhat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 Redhat Enterprise Linux 7 Redhat Enterprise Linux 6 Redhat Enterprise Linux 5 Oracle Solaris 11.4 Oracle MySQL Server 5.7.22 Oracle MySQL Server 5.7.21 Oracle MySQL Server 5.7.20 Oracle MySQL Server 5.7.19 Oracle MySQL Server 5.7.18 Oracle MySQL Server 5.7.17 Oracle MySQL Server 5.7.16 Oracle MySQL Server 5.7.15 Oracle MySQL Server 5.7.12 Oracle MySQL Server 5.7 Oracle MySQL Server 5.6.40 Oracle MySQL Server 5.6.39 Oracle MySQL Server 5.6.38 Oracle MySQL Server 5.6.37 Oracle MySQL Server 5.6.36 Oracle MySQL Server 5.6.35 Oracle MySQL Server 5.6.34 Oracle MySQL Server 5.6.33 Oracle MySQL Server 5.6.30 Oracle MySQL Server 5.6.29 Oracle MySQL Server 5.6.28 Oracle MySQL Server 5.6.27 Oracle MySQL Server 5.6.26 Oracle MySQL Server 5.6.23 Oracle MySQL Server 5.6.22 Oracle MySQL Server 5.6.21 Oracle MySQL Server 5.5.60 Oracle MySQL Server 5.5.59 Oracle MySQL Server 5.5.58 Oracle MySQL Server 5.5.57 Oracle MySQL Server 5.5.56 Oracle MySQL Server 5.5.55 Oracle MySQL Server 5.5.54 Oracle MySQL Server 5.5.53 Oracle MySQL Server 5.5.52 Oracle MySQL Server 5.5.48 Oracle MySQL Server 5.5.47 Oracle MySQL Server 5.5.46 Oracle MySQL Server 5.5.45 Oracle MySQL Server 5.5.42 Oracle MySQL Server 5.5.41 Oracle MySQL Server 5.5.40 Oracle MySQL Server 5.6.25 Oracle MySQL Server 5.6.24 Oracle MySQL Server 5.6.20 Oracle MySQL Server 5.6.16 Oracle MySQL Server 5.6.15 Oracle MySQL Server 5.5.44 Oracle MySQL Server 5.5.43 Oracle MySQL Server 5.5.36 Oracle MySQL Server 5.5.35 |
| Not Vulnerable: | |
Discussion
Oracle MySQL Server Multiple Security Vulnerabilities
Oracle MySQL Server is prone to multiple security vulnerabilities.
These vulnerabilities can be exploited over â??MySQLâ?? protocol.
These vulnerabilities affect the following supported versions:
5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior.
Oracle MySQL Server is prone to multiple security vulnerabilities.
These vulnerabilities can be exploited over â??MySQLâ?? protocol.
These vulnerabilities affect the following supported versions:
5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior.
Exploit / POC
Oracle MySQL Server Multiple Security Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Oracle MySQL Server Multiple Security Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Oracle MySQL Server Multiple Security Vulnerabilities
References:
References:
- Bug 1602369 - (CVE-2018-3070) CVE-2018-3070 mysql: Client mysqldump unspecified (Red Hat Bugzilla)
- CVE-2018-3070 (Red Hat Bugzilla)
- Oracle Homepage (Oracle)
- Oracle Critical Patch Update Advisory - July 2018 (Oracle)
- Oracle Solaris Third Party Bulletin - January 2019 (Oracle)