Unspecified Vulnerability in Oracle MySQL Server Affecting Privileges Related to Foreign Key
CVE-2015-0374

Currently unrated

Key Information:

Vendor: Debian
Status: Debian Linux; Ubuntu Linux; Fedora
Vendor: CVE Published:; 21 January 2015

Summary

An unspecified vulnerability in Oracle MySQL Server versions 5.5.40 and earlier as well as 5.6.21 and earlier allows remote authenticated users to potentially compromise the confidentiality of information. This issue relates specifically to security privileges concerning foreign keys, which may expose sensitive data under certain unknown vectors. Organizations using these versions should assess their environments and apply appropriate mitigations.

References

http://rhn.redhat.com/errata/RHSA-2015-0118.html

vendor-advisoryx_refsource_REDHAT

http://www.debian.org/security/2015/dsa-3135

vendor-advisoryx_refsource_DEBIAN

http://rhn.redhat.com/errata/RHSA-2015-0116.html

vendor-advisoryx_refsource_REDHAT

Timeline

Vulnerability published
Jan 21, 2015
Vulnerability Reserved
Dec 17, 2014