Back to bug 814605
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2012-04-20 08:41:49 UTC | CC | tgl | |
| Jan Lieskovsky | 2012-04-20 08:43:18 UTC | Whiteboard | impact=moderate,public=20120501,reported=20120419,source=mariadbupstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | impact=moderate,public=no,reported=20120419,source=mariadbupstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected |
| Jan Lieskovsky | 2012-04-20 09:10:52 UTC | Blocks | 814613 | |
| Tomas Hoger | 2012-05-14 15:52:32 UTC | Priority | medium | high |
| CC | law | |||
| Summary | EMBARGOED CVE-2012-2122 mysql: Improper comparison of scrambled message against password, possibly leading to authentication bypass | EMBARGOED CVE-2012-2122 mysql: incorrect type case in check_scramble() leading to authentication bypass | ||
| Whiteboard | impact=moderate,public=no,reported=20120419,source=mariadbupstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | impact=important,public=no,reported=20120419,source=upstream,cvss2=6.8/AV:L/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | ||
| Severity | medium | high | ||
| Huzaifa S. Sidhpurwala | 2012-06-11 06:40:21 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2012-2122 mysql: incorrect type case in check_scramble() leading to authentication bypass | CVE-2012-2122 mysql: incorrect type case in check_scramble() leading to authentication bypass | ||
| Whiteboard | impact=important,public=no,reported=20120419,source=upstream,cvss2=6.8/AV:L/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=6.8/AV:L/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | ||
| Tomas Hoger | 2012-06-11 07:01:27 UTC | Depends On | 830650 | |
| Jan Lieskovsky | 2012-06-11 08:17:31 UTC | Depends On | 830680 | |
| J.H.M. Dassen (Ray) | 2012-06-11 10:25:03 UTC | CC | rdassen | |
| Link ID | Red Hat Knowledge Base (Solution) 139683 | |||
| Othman Madjoudj | 2012-06-11 11:38:01 UTC | CC | athmanem | |
| Tomas Hoger | 2012-06-11 11:56:52 UTC | Link ID | Debian BTS 156401 | |
| Tomas Hoger | 2012-06-11 11:57:36 UTC | Link ID | Novell 765092 | |
| Luke Sheldrick | 2012-06-11 12:49:06 UTC | CC | luke | |
| Tomas Hoger | 2012-06-11 14:43:17 UTC | Link ID | Debian BTS 156401 | Debian BTS 677018 |
| Kurt Seifried | 2012-06-11 20:07:17 UTC | CC | roomojee | |
| Summary | CVE-2012-2122 mysql: incorrect type case in check_scramble() leading to authentication bypass | CVE-2012-2122 mysql: incorrect type cast in check_scramble() leading to authentication bypass | ||
| Tomas Hoger | 2012-06-12 06:14:39 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=6.8/AV:L/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected |
| Matthias Runge | 2012-06-12 06:29:55 UTC | CC | mrunge | |
| Mark J. Cox | 2012-06-12 08:23:49 UTC | CC | mjc | |
| David Downing | 2012-06-12 19:40:18 UTC | CC | dave.downing | |
| Tomas Hoger | 2012-06-15 18:03:59 UTC | Blocks | 832540 | |
| Tomas Hoger | 2012-06-20 08:48:52 UTC | Blocks | 833743 | |
| Ramon de C Valle | 2012-07-04 17:40:55 UTC | CC | rcvalle | |
| Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-284 | ||
| Ramon de C Valle | 2012-07-04 19:39:15 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-284 | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->(CWE-393->CWE-284) |
| David Downing | 2012-07-05 12:44:09 UTC | CC | dave.downing | |
| Ramon de C Valle | 2012-07-13 17:03:33 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->(CWE-393->CWE-284) | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->(CWE-393->CWE-305) |
| Ramon de C Valle | 2012-07-17 15:48:51 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->(CWE-393->CWE-305) | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 |
| Tomas Hoger | 2012-10-31 13:41:23 UTC | Depends On | 871813 | |
| Tomas Hoger | 2012-10-31 13:41:41 UTC | Depends On | 871814 | |
| Tomas Hoger | 2013-01-07 14:15:31 UTC | Fixed In Version | mysql 5.1.63, mysql 5.5.24 | |
| Tomas Hoger | 2013-01-07 15:30:53 UTC | Depends On | 892679 | |
| Tomas Hoger | 2013-01-07 15:31:32 UTC | Depends On | 892680 | |
| Tomas Hoger | 2013-01-22 21:13:04 UTC | Status | NEW | CLOSED |
| Resolution | --- | CURRENTRELEASE | ||
| Last Closed | 2013-01-22 16:13:04 UTC | |||
| Vincent Danen | 2015-10-15 21:25:46 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=notaffected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 |
| Ján Rusnačko | 2015-11-24 15:18:13 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=notaffected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 |
| Product Security DevOps Team | 2019-09-29 12:52:21 UTC | Whiteboard | impact=important,public=20120609,reported=20120419,source=upstream,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhel-5/mysql=affected,rhel-6/mysql=affected,fedora-all/mysql=affected,cwe=CWE-704->CWE-393->CWE-305 |
Back to bug 814605