Vulnerability CVE-2010-3682 - CERT Civis.Net

Vulnerability Name:

CVE-2010-3682 (CCN-64684)

Assigned:

2010-07-09

Published:

2010-07-09

Updated:

2019-12-17

Summary:

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

CVSS v3 Severity:

3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)
3.5 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)
3.5 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.0 Medium (REDHAT CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)
3.5 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-Other
CWE-119

Vulnerability Consequences:

Denial of Service

References:

Source: CONFIRM
Type: Exploit, Patch
http://bugs.mysql.com/bug.php?id=52711

Source: MITRE
Type: CNA
CVE-2010-3682

Source: CONFIRM
Type: UNKNOWN
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-92.html

Source: CCN
Type: MySQL Web site
D.1.7. Changes in MySQL 5.1.49 (09 July 2010)

Source: CONFIRM
Type: UNKNOWN
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

Source: APPLE
Type: UNKNOWN
APPLE-SA-2011-06-23-1

Source: SUSE
Type: UNKNOWN
SUSE-SR:2010:019

Source: CCN
Type: RHSA-2010-0825
Moderate: mysql security update

Source: CCN
Type: RHSA-2011-0164
Moderate: mysql security update

Source: SECUNIA
Type: Vendor Advisory
42875

Source: SECUNIA
Type: Vendor Advisory
42936

Source: CCN
Type: SA45054
Apple Mac OS X Multiple Vulnerabilities

Source: CCN
Type: Apple Web site
About the security content of Mac OS X v10.6.8 and Security Update 2011-004

Source: CONFIRM
Type: UNKNOWN
http://support.apple.com/kb/HT4723

Source: DEBIAN
Type: UNKNOWN
DSA-2143

Source: DEBIAN
Type: DSA-2143
mysql-dfsg-5.0 -- several vulnerabilities

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2010:155

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2010:222

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2011:012

Source: MLIST
Type: Exploit, Patch
[oss-security] 20100928 Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws

Source: CCN
Type: OSVDB ID: 67383
MySQL EXPLAIN Statement Item_singlerow_subselect::store Function NULL Dereference DoS

Source: REDHAT
Type: Vendor Advisory
RHSA-2010:0825

Source: REDHAT
Type: UNKNOWN
RHSA-2011:0164

Source: BID
Type: UNKNOWN
42599

Source: CCN
Type: BID-42599
Oracle MySQL 'EXPLAIN' Denial Of Service Vulnerability

Source: TURBO
Type: UNKNOWN
TLSA-2011-3

Source: UBUNTU
Type: UNKNOWN
USN-1017-1

Source: UBUNTU
Type: UNKNOWN
USN-1397-1

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0105

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0133

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0170

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0345

Source: CONFIRM
Type: Exploit, Patch
https://bugzilla.redhat.com/show_bug.cgi?id=628328

Source: XF
Type: UNKNOWN
mysql-itemsinglerowsubselect-dos(64684)

Source: XF
Type: UNKNOWN
mysql-itemsinglerowsubselect-dos(64684)

Source: SUSE
Type: SUSE-SR:2010:019
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:oracle:mysql:5.1.23:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.31:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.32:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.34:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.37:-:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:*:*:*:*:*:*:*:* (Version <= 5.1.48)

OR cpe:/a:oracle:mysql:5.1.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.10:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.13:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.14:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.15:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.16:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.17:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.18:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.19:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.20:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.21:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.22:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.24:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.25:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.26:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.27:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.28:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.29:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.30:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.31:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.33:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.34:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.35:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.36:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.37:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.38:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.39:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.40:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.40:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.41:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.42:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.43:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.43:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.44:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.45:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.46:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.46:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.47:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:oracle:mysql:5.0.0:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.1:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.2:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.10:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.15:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.16:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.17:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.20:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.24:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.36:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.44:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.54:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.56:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.60:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.66:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.72:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.74:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.82:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.84:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.87:-:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:*:*:*:*:*:*:*:* (Version <= 5.0.91)

OR cpe:/a:oracle:mysql:5.0.28:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.32:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.34:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.36:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.38:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.40:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.41:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.42:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.44:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.45:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.46:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.48:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.50:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.51:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.51:b:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.52:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.56:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.58:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.62:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.64:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.66:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.66:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.67:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.68:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.70:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.72:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.74:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.75:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.76:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.77:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.78:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.79:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.80:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.81:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.82:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.83:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.84:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.85:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.86:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.87:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.88:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.89:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.90:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:oracle:mysql:5.0.0:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.18:*:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.0.5.0.21:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.44:-:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.0.51:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.0:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.0:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.1:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.10:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.10:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.13:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.14:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.15:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.15:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.16:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.16:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.17:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.17:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.19:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.1:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.2:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.20:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.20:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.21:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.22:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.24:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.27:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.3:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.3:beta:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.33:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.37:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.3:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.4:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.41:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.4:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.5:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.9:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.10:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.13:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.14:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.15:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.16:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.17:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.4:*:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.1.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.9:*:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.0.22.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.51a:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.50:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.45:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.30:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.42:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.23:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.38:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.36:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.32:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.25:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.24:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.51:b:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.30:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.32:bzr:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.52:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.60:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.66:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.75:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.56:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.54:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.26:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.77:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.81:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.82:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.83:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:bk:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.21:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.22:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:a:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.1.5a:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.18:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.19:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.20:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.45:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.44:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.43:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.42:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.41:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.40:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.39:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.38:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.37:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.36:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.35:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.34:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.33:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.32:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.31:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.91:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.90:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.89:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.88:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.87:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.86:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.85:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.84:-:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.0.67:*:*:*:*:*:*:*

OR cpe:/a:mysql:mysql:5.0.45b:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.4:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.46:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.47:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.48:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.23:a:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.24:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.25:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.26:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.27:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.28:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.29:*:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.31:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.34:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.37:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.40:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.43:sp1:*:*:*:*:*:*

OR cpe:/a:oracle:mysql:5.1.46:sp1:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.6.7:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20103682	V	CVE-2010-3682	2022-05-20
oval:org.opensuse.security:def:32199	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:29427	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:29391	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:32065	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:32292	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27981	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:33440	P	Security update for Evolution	2020-12-01
oval:org.opensuse.security:def:28693	P	Security update for gd	2020-12-01
oval:org.opensuse.security:def:32436	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:28175	P	Security update for kernel-source (Important)	2020-12-01
oval:org.opensuse.security:def:31979	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:28753	P	Security update for MySQL	2020-12-01
oval:org.opensuse.security:def:32648	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28316	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31991	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32736	P	libvirt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28552	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:27970	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:32802	P	vte on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28654	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:32349	P	Security update for sqlite3 (Important)	2020-12-01
oval:org.opensuse.security:def:28045	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:33479	P	Security update for MySQL	2020-12-01
oval:org.opensuse.security:def:28709	P	Security update for hplip	2020-12-01
oval:org.opensuse.security:def:32592	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28259	P	Security update for lynx (Moderate)	2020-12-01
oval:org.opensuse.security:def:31980	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32697	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28400	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:27969	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:32758	P	openswan on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28605	P	Security update for wireshark	2020-12-01
oval:org.mitre.oval:def:12161	P	DSA-2143-1 mysql-dfsg-5.0 -- several vulnerabilities	2014-07-21
oval:org.mitre.oval:def:14934	P	USN-1397-1 -- MySQL vulnerabilities	2014-06-30
oval:org.mitre.oval:def:13602	P	USN-1017-1 -- mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:22961	P	ELSA-2011:0164: mysql security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:23210	P	ELSA-2010:0825: mysql security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:21911	P	RHSA-2011:0164: mysql security update (Moderate)	2014-02-24
oval:org.mitre.oval:def:22337	P	RHSA-2010:0825: mysql security update (Moderate)	2014-02-24
oval:com.redhat.rhsa:def:20110164	P	RHSA-2011:0164: mysql security update (Moderate)	2011-01-18
oval:com.redhat.rhsa:def:20100825	P	RHSA-2010:0825: mysql security update (Moderate)	2010-11-03