Vulnerability CVE-2008-4456

Vulnerability Name:

CVE-2008-4456 (CCN-45590)

Assigned:

2008-09-30

Published:

2008-09-30

Updated:

2019-12-17

Summary:

Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document.
Note: as of 20081031, the issue has not been fixed in MySQL 5.0.67.

CVSS v3 Severity:

3.7 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

2.6 Low (CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N)
1.9 Low (Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

2.6 Low (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N)
1.9 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

1.7 Low (REDHAT CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:P/A:N)
1.3 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-79

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: BugTraq Mailing List, Tue Sep 30 2008 - 03:29:38 CDT
MySQL command-line client HTML injection vulnerability

Source: CCN
Type: MySQL Bug #27884
mysql --html does not quote HTML special characters in output

Source: CONFIRM
Type: Exploit
http://bugs.mysql.com/bug.php?id=27884

Source: MITRE
Type: CNA
CVE-2008-4456

Source: CCN
Type: MySQL Web site
MySQL Downloads

Source: APPLE
Type: UNKNOWN
APPLE-SA-2010-03-29-1

Source: CCN
Type: RHSA-2009-1289
Moderate: mysql security and bug fix update

Source: CCN
Type: RHSA-2009-1461
Important: Red Hat Application Stack v2.4 security and enhancement update

Source: CCN
Type: RHSA-2010-0110
Moderate: mysql security update

Source: BUGTRAQ
Type: UNKNOWN
20081004 RE: RE: MySQL command-line client HTML injection vulnerability

Source: CCN
Type: SA32072
MySQL HTML Output Script Insertion Security Issue

Source: SECUNIA
Type: Vendor Advisory
32072

Source: SECUNIA
Type: Vendor Advisory
34907

Source: SECUNIA
Type: UNKNOWN
36566

Source: SECUNIA
Type: Vendor Advisory
38517

Source: SREASON
Type: UNKNOWN
4357

Source: CCN
Type: Apple Web site
About the security content of Security Update 2010-002 / Mac OS X v10.6.3

Source: CONFIRM
Type: UNKNOWN
http://support.apple.com/kb/HT4077

Source: UBUNTU
Type: UNKNOWN
USN-897-1

Source: DEBIAN
Type: UNKNOWN
DSA-1783

Source: DEBIAN
Type: DSA-1783
mysql-dfsg-5.0 -- multiple vulnerabilities

Source: MISC
Type: UNKNOWN
http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability

Source: CCN
Type: Henlich schreibt Advisory, 2007-04-17
MySQL command-line client HTML injection vulnerability

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2009:094

Source: REDHAT
Type: UNKNOWN
RHSA-2009:1289

Source: REDHAT
Type: UNKNOWN
RHSA-2010:0110

Source: BUGTRAQ
Type: UNKNOWN
20080930 MySQL command-line client HTML injection vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20080930 RE: MySQL command-line client HTML injection vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20081008 Re: MySQL command-line client HTML injection vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20081029 Re: MySQL command-line client HTML injection vulnerability

Source: BID
Type: UNKNOWN
31486

Source: CCN
Type: BID-31486
MySQL Command Line Client HTML Special Characters HTML Injection Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1397-1

Source: CCN
Type: USN-897-1
MySQL vulnerabilities

Source: XF
Type: UNKNOWN
mysql-commandline-xss(45590)

Source: XF
Type: UNKNOWN
mysql-commandline-xss(45590)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11456

Source: SUSE
Type: SUSE-SR:2009:014
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:oracle:mysql:5.0.4:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.36:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.44:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.26:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.27:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.32:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.33:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.37:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.38:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.41:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.42:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.45:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.67:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration CCN 1:

cpe:/a:oracle:mysql:5.0.0:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.18:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.44:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.1:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.19:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.2:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.20:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.21:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.22:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.27:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.3:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.33:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.37:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.4:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.10:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.13:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.14:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.15:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.16:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.17:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:-:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.1.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.9:*:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.0.22.1.0.1:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*

OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*

OR cpe:/a:redhat:rhel_application_stack:2:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:8.04::lts:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*

OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20084456	V	CVE-2008-4456	2022-05-20
oval:org.opensuse.security:def:42364	P	Security update for yaml-cpp (Moderate)	2022-04-13
oval:org.opensuse.security:def:31752	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:26219	P	Security update for apache2 (Important) (in QA)	2022-01-10
oval:org.opensuse.security:def:26225	P	Security update for libsndfile (Important)	2022-01-05
oval:org.opensuse.security:def:31753	P	Security update for net-snmp (Important)	2022-01-05
oval:org.opensuse.security:def:26218	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:26186	P	Security update for libqt4 (Important)	2021-12-22
oval:org.opensuse.security:def:32244	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:26175	P	Security update for xen (Moderate)	2021-12-01
oval:org.opensuse.security:def:26176	P	Security update for speex (Moderate)	2021-12-01
oval:org.opensuse.security:def:31307	P	Security update for postgresql, postgresql13, postgresql14 (Important)	2021-11-20
oval:org.opensuse.security:def:26137	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:31277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:31679	P	Security update for xen (Important)	2021-09-06
oval:org.opensuse.security:def:32178	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:31678	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:31675	P	Security update for bind (Moderate)	2021-08-30
oval:org.opensuse.security:def:31669	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:31668	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:31667	P	Security update for fetchmail (Moderate)	2021-08-18
oval:org.opensuse.security:def:31666	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:31233	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:26092	P	Security update for the Linux Kernel (Important)	2021-07-20
oval:org.opensuse.security:def:26090	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:31221	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:26080	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:31642	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:32121	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:42607	P	libmysql55client18-32bit-5.5.43-0.7.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36200	P	libmysql55client18-32bit-5.5.43-0.7.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42608	P	libmysqlclient15-32bit-5.0.96-0.6.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36201	P	libmysqlclient15-32bit-5.0.96-0.6.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36465	P	libmysql55client_r18-32bit-5.5.43-0.7.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36466	P	libmysqlclient-devel-5.0.96-0.6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32090	P	Security update for avahi (Important)	2021-06-03
oval:org.opensuse.security:def:26036	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:26035	P	Security update for apache-commons-io (Moderate)	2021-04-26
oval:org.opensuse.security:def:26026	P	Security update for cifs-utils (Moderate)	2021-04-13
oval:org.opensuse.security:def:26027	P	Security update for glibc (Important)	2021-04-13
oval:org.opensuse.security:def:31145	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:31369	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:42161	P	Security update for gnutls (Important)	2021-03-24
oval:org.opensuse.security:def:32276	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:32277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:31734	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:31725	P	Security update for openvswitch (Important)	2021-02-12
oval:org.opensuse.security:def:32200	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:26091	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:31222	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:26084	P	Security update for postgresql, postgresql12, postgresql13 (Important)	2021-01-26
oval:org.opensuse.security:def:32139	P	Security update for sudo (Important)	2021-01-26
oval:org.opensuse.security:def:32120	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:32921	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:26034	P	Security update for openldap2 (Moderate)	2021-01-14
oval:org.opensuse.security:def:25983	P	Security update for openexr (Moderate)	2020-12-23
oval:org.opensuse.security:def:41998	P	libmysqlclient15-32bit-5.0.67-13.20.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35591	P	libmysqlclient15-32bit-5.0.67-13.20.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35754	P	libmysqlclient15-32bit-5.0.94-0.2.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35957	P	libmysqlclient15-32bit-5.0.96-0.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31510	P	Security update for libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31426	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26380	P	Security update for irssi (Moderate)	2020-12-01
oval:org.opensuse.security:def:25874	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:32679	P	gstreamer-0_10-plugins-good on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25749	P	Security update for pidgin (Moderate)	2020-12-01
oval:org.opensuse.security:def:25583	P	Security update for python36 (Important)	2020-12-01
oval:org.opensuse.security:def:31977	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:31831	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:26732	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26718	P	hplip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31071	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25881	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:32381	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:26791	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25154	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:26441	P	Security update for phpMyAdmin (Moderate)	2020-12-01
oval:org.opensuse.security:def:26428	P	Security update for redis (Moderate)	2020-12-01
oval:org.opensuse.security:def:32443	P	Security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:32718	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25508	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:25711	P	Security update for python-aws-sam-translator, python-boto3, python-botocore, python-cfn-lint, python-jsonschema, python-nose2, python-parameterized, python-pathlib2, python-pytest-cov, python-requests, python-s3transfer (Moderate)	2020-12-01
oval:org.opensuse.security:def:32034	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31887	P	Security update for emacs (Important)	2020-12-01
oval:org.opensuse.security:def:26482	P	Security update for ffmpeg-4 (Low)	2020-12-01
oval:org.opensuse.security:def:26753	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31059	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25934	P	Security update for the Linux kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27428	P	krb5-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25142	P	Security update for wget (Important)	2020-12-01
oval:org.opensuse.security:def:31531	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:26591	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32486	P	amavisd-new on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25762	P	Security update for Xerces-C (Moderate)	2020-12-01
oval:org.opensuse.security:def:25589	P	Security update for zabbix (Moderate)	2020-12-01
oval:org.opensuse.security:def:31774	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26525	P	avahi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25821	P	Security update for lhasa (Moderate)	2020-12-01
oval:org.opensuse.security:def:31997	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:27463	P	libmysql55client_r18-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31588	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:26644	P	tar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32882	P	hyper-v on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25750	P	Security update for flash-player (Moderate)	2020-12-01
oval:org.opensuse.security:def:25825	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:25484	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26733	P	lcms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26921	P	java-1_6_0-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26299	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32382	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:31879	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25316	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:31884	P	Security update for dosfstools (Moderate)	2020-12-01
oval:org.opensuse.security:def:31513	P	Security update for quagga	2020-12-01
oval:org.opensuse.security:def:26429	P	Security update for keepalived (Moderate)	2020-12-01
oval:org.opensuse.security:def:25918	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25751	P	Security update for libssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:25953	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25568	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:26746	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26956	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26356	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:32420	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:27429	P	libQtWebKit-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25304	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25218	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:26592	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26467	P	Security update for redis (Important)	2020-12-01
oval:org.opensuse.security:def:32487	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25792	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:31936	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:26526	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31425	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:27464	P	libmysqlclient-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25143	P	Security update for soundtouch (Moderate)	2020-12-01
oval:org.opensuse.security:def:31791	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26645	P	unrar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26239	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:33124	P	kdelibs4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26014	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:25826	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25646	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:31813	P	Security update for apache2-mod_jk (Moderate)	2020-12-01
oval:org.opensuse.security:def:27163	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31436	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26300	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:26326	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:25860	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:32041	P	Security update for krb5 (Important)	2020-12-01
oval:org.opensuse.security:def:25519	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:31885	P	Security update for ecryptfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:26693	P	evolution-data-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33163	P	libmysql55client18-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26016	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:25954	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:25730	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:32332	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:26747	P	libgdiplus0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27198	P	libmysql55client18-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31424	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:26357	P	Security update for enigmail (Important)	2020-12-01
oval:org.opensuse.security:def:26379	P	Security update for irssi (Moderate)	2020-12-01
oval:org.opensuse.security:def:32421	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:32517	P	g3utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25507	P	Security update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:25380	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31976	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:26468	P	Security update for go1.9 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26556	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25719	P	Security update for ipmitool (Important)	2020-12-01
oval:org.opensuse.security:def:26790	P	ofed on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31439	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26440	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:32442	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32556	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25305	P	Security update for java-1_8_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:25346	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:32033	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26481	P	Security update for chromium (Moderate)	2020-12-01
oval:org.opensuse.security:def:33125	P	kdenetwork4-filesharing on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26015	P	Security update for libplist (Moderate)	2020-12-01
oval:org.opensuse.security:def:25849	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:25772	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:31975	P	Security update for jasper (Important)	2020-12-01
oval:org.opensuse.security:def:27164	P	krb5-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26327	P	Security update for Chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26022	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:25761	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25427	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:31878	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:26694	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26283	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:33164	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31060	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25933	P	Security update for gstreamer-0_10-plugins-good (Important)	2020-12-01
oval:org.opensuse.security:def:32333	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:31835	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:27199	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:28888	P	RHSA-2009:1289 -- mysql security and bug fix update (Moderate)	2015-08-17
oval:org.mitre.oval:def:13088	P	USN-897-1 -- mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:14934	P	USN-1397-1 -- MySQL vulnerabilities	2014-06-30
oval:org.mitre.oval:def:20178	P	DSA-1783-1 mysql-dfsg-5.0 - several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:7877	P	DSA-1783 mysql-dfsg-5.0 -- multiple vulnerabilities	2014-06-23
oval:org.mitre.oval:def:22888	P	ELSA-2009:1289: mysql security and bug fix update (Moderate)	2014-05-26
oval:org.mitre.oval:def:11456	V	Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.	2013-04-29
oval:com.redhat.rhsa:def:20100110	P	RHSA-2010:0110: mysql security update (Moderate)	2010-02-16
oval:com.redhat.rhsa:def:20091289	P	RHSA-2009:1289: mysql security and bug fix update (Moderate)	2009-09-02
oval:org.debian:def:1783	V	multiple vulnerabilities	2009-04-29

BACK