CVE-2018-3282
published 2018-10-17CVE-2018-3282: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior…
PriorityP424medium4.9CVSS 3.1
AVNACLPRHUINSUCNINAH
EPSS
3.97%
89.1th percentile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Affected
43 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
| mariadb | mariadb | >= 0 < 10.1.37-r0 | 10.1.37-r0 |
| mariadb | mariadb | >= 0 < 10.1.37-r0 | 10.1.37-r0 |
| mariadb | mariadb | >= 0 < 10.2.19-r0 | 10.2.19-r0 |
| mariadb | mariadb | >= 0 < 10.3.11-r0 | 10.3.11-r0 |
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.9MEDIUM
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hv5g-3886-rpxc: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)
ghsa_unreviewed·2022-05-13
CVE-2018-3282 [MEDIUM] GHSA-hv5g-3886-rpxc: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
OSV
CVE-2018-3282: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)
osv·2018-10-17·CVSS 4.9
CVE-2018-3282 [MEDIUM] CVE-2018-3282: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Ubuntu
MySQL vulnerabilities
vendor_ubuntu·2018-10-29
CVE-2018-3133 MySQL vulnerabilities
Title: MySQL vulnerabilities
Summary: Several security issues were fixed in MySQL.
USN-3799-1 fixed a vulnerability in MySQL. This update provides
the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 5.5.62 in Ubuntu 12.04 ESM.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-62.html
https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Instructions: In general, a standard system update will make all the necessary change
Ubuntu
MySQL vulnerabilities
vendor_ubuntu·2018-10-23
CVE-2018-3133 MySQL vulnerabilities
Title: MySQL vulnerabilities
Summary: Several security issues were fixed in MySQL.
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 5.5.62 in Ubuntu 14.04 LTS. Ubuntu 16.04 LTS,
Ubuntu 18.04 LTS, and Ubuntu 18.10 have been updated to MySQL 5.7.24.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-62.html
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-24.html
https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Instructions: In general, a standard system update will make all the nece
Red Hat
mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
vendor_redhat·2018-10-16·CVSS 4.9
CVE-2018-3282 [MEDIUM] mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Package: mysql55-mysql (Red Hat Enterprise Linux 5) - Will not fix
Package: mysql (Red Hat Enterprise Linux
Red Hat
chromium-browser: Insufficient policy enforcement in Catalog Service
vendor_redhat·2018-09-25·CVSS 8.8
CVE-2018-6055 [HIGH] chromium-browser: Insufficient policy enforcement in Catalog Service
chromium-browser: Insufficient policy enforcement in Catalog Service
Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.
Red Hat
chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
vendor_redhat·2018-09-25·CVSS 6.5
CVE-2018-6119 [MEDIUM] chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Red Hat
chromium-browser: incorrect derived class instantiation in v8
vendor_redhat·2018-02-13·CVSS 8.8
CVE-2018-6056 [HIGH] chromium-browser: incorrect derived class instantiation in v8
chromium-browser: incorrect derived class instantiation in v8
Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior to 64.0.3282.168 allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Red Hat
chromium-browser: insufficient isolation of devtools from extensions
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6045 [MEDIUM] chromium-browser: insufficient isolation of devtools from extensions
chromium-browser: insufficient isolation of devtools from extensions
Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension.
Red Hat
chromium-browser: integer underflow in webassembly
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6036 [MEDIUM] chromium-browser: integer underflow in webassembly
chromium-browser: integer underflow in webassembly
Insufficient data validation in V8 in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user data via a crafted HTML page.
Red Hat
chromium-browser: incomplete no-referrer policy implementation
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6052 [MEDIUM] chromium-browser: incomplete no-referrer policy implementation
chromium-browser: incomplete no-referrer policy implementation
Lack of support for a non standard no-referrer policy value in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to obtain referrer details from a web page that had thought it had opted out of sending referrer data.
Red Hat
chromium-browser: insufficient user gesture requirements in autofill
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6037 [MEDIUM] chromium-browser: insufficient user gesture requirements in autofill
chromium-browser: insufficient user gesture requirements in autofill
Inappropriate implementation in autofill in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to obtain autofill data with insufficient user gestures via a crafted HTML page.
Red Hat
chromium-browser: referrer policy bypass in blink
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6048 [MEDIUM] chromium-browser: referrer policy bypass in blink
chromium-browser: referrer policy bypass in blink
Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak referrer information via a crafted HTML page.
Red Hat
chromium-browser: use after free in pdfium
vendor_redhat·2018-01-24·CVSS 8.8
CVE-2018-6031 [HIGH] chromium-browser: use after free in pdfium
chromium-browser: use after free in pdfium
Use after free in PDFium in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
Red Hat
chromium-browser: url spoof in omnibox
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6050 [MEDIUM] chromium-browser: url spoof in omnibox
chromium-browser: url spoof in omnibox
Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Red Hat
chromium-browser: integer overflow in blink
vendor_redhat·2018-01-24·CVSS 8.1
CVE-2018-6034 [HIGH] chromium-browser: integer overflow in blink
chromium-browser: integer overflow in blink
Insufficient data validation in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Red Hat
chromium-browser: same origin bypass in shared worker
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6032 [MEDIUM] chromium-browser: same origin bypass in shared worker
chromium-browser: same origin bypass in shared worker
Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted HTML page.
Red Hat
chromium-browser: insufficient isolation of devtools from extensions
vendor_redhat·2018-01-24·CVSS 8.8
CVE-2018-6035 [HIGH] chromium-browser: insufficient isolation of devtools from extensions
chromium-browser: insufficient isolation of devtools from extensions
Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension.
Red Hat
chromium-browser: use after free in webui
vendor_redhat·2018-01-24·CVSS 8.8
CVE-2018-6054 [HIGH] chromium-browser: use after free in webui
chromium-browser: use after free in webui
Use after free in WebUI in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension.
Red Hat
chromium-browser: heap buffer overflow in webgl
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6038 [MEDIUM] chromium-browser: heap buffer overflow in webgl
chromium-browser: heap buffer overflow in webgl
Heap buffer overflow in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Red Hat
chromium-browser: url spoof in navigation
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6041 [MEDIUM] chromium-browser: url spoof in navigation
chromium-browser: url spoof in navigation
Incorrect security UI in navigation in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Red Hat
chromium-browser: insufficient escaping with external url handlers
vendor_redhat·2018-01-24·CVSS 8.8
CVE-2018-6043 [HIGH] chromium-browser: insufficient escaping with external url handlers
chromium-browser: insufficient escaping with external url handlers
Insufficient data validation in External Protocol Handler in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially execute arbitrary programs on user machine via a crafted HTML page.
Red Hat
chromium-browser: insufficient isolation of devtools from extensions
vendor_redhat·2018-01-24·CVSS 6.1
CVE-2018-6046 [MEDIUM] chromium-browser: insufficient isolation of devtools from extensions
chromium-browser: insufficient isolation of devtools from extensions
Insufficient data validation in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted Chrome Extension.
Red Hat
chromium-browser: content security policy bypass
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6040 [MEDIUM] chromium-browser: content security policy bypass
chromium-browser: content security policy bypass
Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.
Red Hat
chromium-browser: url spoof in omnibox
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6042 [MEDIUM] chromium-browser: url spoof in omnibox
chromium-browser: url spoof in omnibox
Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Red Hat
chromium-browser: ui spoof in permissions
vendor_redhat·2018-01-24·CVSS 6.5
CVE-2018-6049 [MEDIUM] chromium-browser: ui spoof in permissions
chromium-browser: ui spoof in permissions
Incorrect security UI in permissions prompt in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the origin to which permission is granted via a crafted HTML page.
Red Hat
chromium-browser: race when opening downloaded files
vendor_redhat·2018-01-24·CVSS 8.8
CVE-2018-6033 [HIGH] chromium-browser: race when opening downloaded files
chromium-browser: race when opening downloaded files
Insufficient data validation in Downloads in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted Chrome Extension.
Red Hat
chromium-browser: cross origin url leak in webgl
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6047 [MEDIUM] chromium-browser: cross origin url leak in webgl
chromium-browser: cross origin url leak in webgl
Insufficient policy enforcement in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user redirect URL via a crafted HTML page.
Red Hat
chromium-browser: xss in devtools
vendor_redhat·2018-01-24·CVSS 6.1
CVE-2018-6039 [MEDIUM] chromium-browser: xss in devtools
chromium-browser: xss in devtools
Insufficient data validation in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted Chrome Extension.
Red Hat
chromium-browser: leak of page thumbnails in new tab page
vendor_redhat·2018-01-24·CVSS 3.3
CVE-2018-6053 [LOW] chromium-browser: leak of page thumbnails in new tab page
chromium-browser: leak of page thumbnails in new tab page
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page.
Red Hat
chromium-browser: referrer leak in xss auditor
vendor_redhat·2018-01-24·CVSS 4.3
CVE-2018-6051 [MEDIUM] chromium-browser: referrer leak in xss auditor
chromium-browser: referrer leak in xss auditor
XSS Auditor in Google Chrome prior to 64.0.3282.119, did not ensure the reporting URL was in the same origin as the page it was on, which allowed a remote attacker to obtain referrer details via a crafted HTML page.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2018-3282 mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
bugzilla·2018-10-17·CVSS 4.9
CVE-2018-3282 [MEDIUM] CVE-2018-3282 mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
CVE-2018-3282 mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
External References:
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Discussion:
Created community-mysql tracking bugs for this issue:
Affects: fedora-all [bug 1640559]
--
Bugzilla
CVE-2018-6119 chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
bugzilla·2018-09-26·CVSS 6.5
CVE-2018-6119 [MEDIUM] CVE-2018-6119 chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
CVE-2018-6119 chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page
Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Upstream bug:
https://bugs.chromium.org/p/chromium/issues/detail?id=784761
References:
https://chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html
Discussion:
Created chromium tracking bugs for this issue:
Affects: epel-7 [bug 1633392]
Affects: fedora-all [bug 1633391]
---
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):
https://access.redhat.com/security/cve/cve-2018-6119
Bugzilla
CVE-2018-6055 chromium-browser: Insufficient policy enforcement in Catalog Service
bugzilla·2018-09-26·CVSS 8.8
CVE-2018-6055 [HIGH] CVE-2018-6055 chromium-browser: Insufficient policy enforcement in Catalog Service
CVE-2018-6055 chromium-browser: Insufficient policy enforcement in Catalog Service
Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.
Upstream bug:
https://bugs.chromium.org/p/chromium/issues/detail?id=791003
References:
https://chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html
Discussion:
Created chromium tracking bugs for this issue:
Affects: epel-7 [bug 1633395]
Affects: fedora-all [bug 1633394]
---
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):
https://access.redhat.com/security/cve/cve-2018-6055
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlhttp://www.securityfocus.com/bid/105610http://www.securitytracker.com/id/1041888https://access.redhat.com/errata/RHSA-2018:3655https://access.redhat.com/errata/RHSA-2019:1258https://access.redhat.com/errata/RHSA-2019:2327https://lists.debian.org/debian-lts-announce/2018/11/msg00004.htmlhttps://lists.debian.org/debian-lts-announce/2018/11/msg00007.htmlhttps://security.gentoo.org/glsa/201908-24https://security.netapp.com/advisory/ntap-20181018-0002/https://usn.ubuntu.com/3799-1/https://usn.ubuntu.com/3799-2/https://www.debian.org/security/2018/dsa-4341http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlhttp://www.securityfocus.com/bid/105610http://www.securitytracker.com/id/1041888https://access.redhat.com/errata/RHSA-2018:3655https://access.redhat.com/errata/RHSA-2019:1258https://access.redhat.com/errata/RHSA-2019:2327https://lists.debian.org/debian-lts-announce/2018/11/msg00004.htmlhttps://lists.debian.org/debian-lts-announce/2018/11/msg00007.htmlhttps://security.gentoo.org/glsa/201908-24https://security.netapp.com/advisory/ntap-20181018-0002/https://usn.ubuntu.com/3799-1/https://usn.ubuntu.com/3799-2/https://www.debian.org/security/2018/dsa-4341
2018-10-17
Published