CVE Database

CVE-2014-2431

Impact: Low
Public: 2014-04-15
Bugzilla: 1088146: CVE-2014-2431 mysql: unspecified DoS related to Options (CPU April 2014)
IAVA: 2014-A-0057

Details

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect availability via unknown vectors related to Options.

Find out more about CVE-2014-2431 from the MITRE CVE dictionary and NIST NVD.

CVSS v2 metrics

Base Score: 3.5
Base Metrics: AV:N/AC:M/Au:S/C:N/I:N/A:P
Access Vector: Network
Access Complexity: Medium
Authentication: Single Instance
Confidentiality Impact: None
Integrity Impact: None
Availability Impact: Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 5 (mysql55-mysql) RHSA-2014:0536 May 22, 2014
Red Hat Enterprise Linux version 7 (mariadb) RHSA-2014:0702 June 10, 2014
Red Hat Software Collections 1 for Red Hat Enterprise Linux version 6 (mariadb55-mariadb) RHSA-2014:0522 May 20, 2014
Red Hat Software Collections 1 for Red Hat Enterprise Linux version 6 (mysql55-mysql) RHSA-2014:0537 May 22, 2014

External References

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixMSQL

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.