Red Hat Security Advisory: mysql security update Security Advisory secalert@redhat.com Red Hat Security Response Team RHSA-2012:1462 Final 1 1 2012-11-14T20:28:00Z Current version 2012-11-14T20:28:00Z 2012-11-14T20:28:00Z Red Hat rhsa-to-cvrf 1.0.1484 2012-11-14T20:57:02Z Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. (CVE-2012-1688, CVE-2012-1690, CVE-2012-1703, CVE-2012-2749, CVE-2012-0540, CVE-2012-1689, CVE-2012-1734, CVE-2012-3163, CVE-2012-3158, CVE-2012-3177, CVE-2012-3166, CVE-2012-3173, CVE-2012-3150, CVE-2012-3180, CVE-2012-3167, CVE-2012-3197, CVE-2012-3160) These updated packages upgrade MySQL to version 5.1.66. Refer to the MySQL release notes listed in the References section for a full list of changes. All MySQL users should upgrade to these updated packages, which correct these issues. After installing this update, the MySQL server daemon (mysqld) will be restarted automatically. Please see https://www.redhat.com/footer/terms-of-use.html Copyright © 2012 Red Hat, Inc. All rights reserved. Important https://rhn.redhat.com/errata/RHSA-2012-1462.html https://rhn.redhat.com/errata/RHSA-2012-1462.html https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/updates/classification/#important http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html#AppendixMSQL http://dev.mysql.com/doc/refman/5.1/en/news-5-1-62.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-62.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-64.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-64.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-65.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-65.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-66.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-66.html Red Hat Enterprise Linux HPC Node Optional (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Workstation (v. 6) Red Hat Enterprise Linux Desktop Optional (v. 6) Red Hat Enterprise Linux Workstation Optional (v. 6) Red Hat Enterprise Linux HPC Node (v. 6) Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux Server Optional (v. 6) mysql-5.1.66-1.el6_3.src.rpm mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Server (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Workstation (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux HPC Node (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Desktop (v. 6) mysql-5.1.66-1.el6_3 as a component of Red Hat Enterprise Linux Server Optional (v. 6) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-07-17T00:00:00Z 2012-07-18T00:00:00Z CVE-2012-0540 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-0540.html CVE-2012-0540 https://bugzilla.redhat.com/show_bug.cgi?id=841349 bz#841349: CVE-2012-0540 mysql: unspecified vulnerability related to GIS extension DoS (CPU Jul 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-04-19T00:00:00Z 2012-04-17T00:00:00Z CVE-2012-1688 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-1688.html CVE-2012-1688 https://bugzilla.redhat.com/show_bug.cgi?id=814285 bz#814285: CVE-2012-1688 mysql: Unspecified vulnerability in the server DML subcomponent leading to DoS (server hang / crash) (Oracle CPU April 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-07-17T00:00:00Z 2012-07-18T00:00:00Z CVE-2012-1689 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-1689.html CVE-2012-1689 https://bugzilla.redhat.com/show_bug.cgi?id=841351 bz#841351: CVE-2012-1689 mysql: unspecified vulnerability related to Server Optimizer DoS (CPU Jul 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-04-19T00:00:00Z 2012-04-17T00:00:00Z CVE-2012-1690 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-1690.html CVE-2012-1690 https://bugzilla.redhat.com/show_bug.cgi?id=814287 bz#814287: CVE-2012-1690 mysql: Unspecified vulnerability in the server optimizer subcomponent leading to DoS (server hang / crash) (Oracle CPU April 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-04-19T00:00:00Z 2012-04-17T00:00:00Z CVE-2012-1703 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-1703.html CVE-2012-1703 https://bugzilla.redhat.com/show_bug.cgi?id=814293 bz#814293: CVE-2012-1703 mysql: Unspecified vulnerability in the server optimizer subcomponent leading to DoS (server crash or system hang) (Oracle CPU April 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-07-17T00:00:00Z 2012-07-18T00:00:00Z CVE-2012-1734 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-1734.html CVE-2012-1734 https://bugzilla.redhat.com/show_bug.cgi?id=841353 bz#841353: CVE-2012-1734 mysql: unspecified vulnerability related to Server Optimizer DoS (CPU Jul 2012) This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-05-11T00:00:00Z 2012-04-04T00:00:00Z CVE-2012-2749 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-2749.html CVE-2012-2749 https://bugzilla.redhat.com/show_bug.cgi?id=833737 bz#833737: CVE-2012-2749 mysql: crash caused by wrong calculation of key length for sort order index This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3150 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3150.html CVE-2012-3150 https://bugzilla.redhat.com/show_bug.cgi?id=867220 bz#867220: CVE-2012-3150 mysql: unspecified DoS vulnerability related to Server Optimizer This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3158 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3158.html CVE-2012-3158 https://bugzilla.redhat.com/show_bug.cgi?id=867213 bz#867213: CVE-2012-3158 mysql: unspecified vulnerability related to the MySQL Protocol This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3160 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3160.html CVE-2012-3160 https://bugzilla.redhat.com/show_bug.cgi?id=867238 bz#867238: CVE-2012-3160 mysql: unspecified vulnerability in Server Installation leading to information disclosure This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3163 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3163.html CVE-2012-3163 https://bugzilla.redhat.com/show_bug.cgi?id=867212 bz#867212: CVE-2012-3163 mysql: unspecified vulnerability related to Information Schema This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3166 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3166.html CVE-2012-3166 https://bugzilla.redhat.com/show_bug.cgi?id=867216 bz#867216: CVE-2012-3166 mysql: unspecified DoS vulnerability related to InnoDB This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3167 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3167.html CVE-2012-3167 https://bugzilla.redhat.com/show_bug.cgi?id=867230 bz#867230: CVE-2012-3167 mysql: unspecified DoS vulnerability related to Server Full Text Search This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3173 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3173.html CVE-2012-3173 https://bugzilla.redhat.com/show_bug.cgi?id=867217 bz#867217: CVE-2012-3173 mysql: unspecified DoS vulnerability related to InnoDB Plugin This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3177 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Important 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3177.html CVE-2012-3177 https://bugzilla.redhat.com/show_bug.cgi?id=867215 bz#867215: CVE-2012-3177 mysql: unspecified Server DoS vulnerability This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3180 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Moderate 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3180.html CVE-2012-3180 https://bugzilla.redhat.com/show_bug.cgi?id=867223 bz#867223: CVE-2012-3180 mysql: unspecified DoS vulnerability related to Server Optimizer This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed in the References section. 2012-10-16T00:00:00Z 2012-10-16T00:00:00Z CVE-2012-3197 6Client-6.3.z:mysql-5.1.66-1.el6_3 6Client-optional-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-6.3.z:mysql-5.1.66-1.el6_3 6ComputeNode-optional-6.3.z:mysql-5.1.66-1.el6_3 6Server-6.3.z:mysql-5.1.66-1.el6_3 6Server-optional-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-6.3.z:mysql-5.1.66-1.el6_3 6Workstation-optional-6.3.z:mysql-5.1.66-1.el6_3 Low 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 https://rhn.redhat.com/errata/RHSA-2012-1462.html https://www.redhat.com/security/data/cve/CVE-2012-3197.html CVE-2012-3197 https://bugzilla.redhat.com/show_bug.cgi?id=867233 bz#867233: CVE-2012-3197 mysql: unspecified DoS vulnerability related to Server Replication