CVE-2012-2750

NameCVE-2012-2750
DescriptionUnspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-2780-1
NVD severityhigh (attack range: remote)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
mysql-5.5 (PTS)wheezy5.5.47-0+deb7u1fixed
wheezy (security)5.5.52-0+deb7u1fixed
jessie5.5.50-0+deb8u1fixed
jessie (security)5.5.52-0+deb8u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
mysql-5.1source(unstable)(unfixed)high
mysql-5.1sourcesqueeze5.1.72-2highDSA-2780-1
mysql-5.5source(unstable)5.5.23-1high

Notes

http://bugs.mysql.com/bug.php?id=59533
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

Search for package or bug name: Reporting problems