Bug 1053383 (CVE-2014-0420)

Summary: CVE-2014-0420 mysql: unspecified vulnerability related to Replication DoS (CPU Jan 2014)
Product: [Other] Security Response Reporter: Murray McAllister <mmcallis>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: byte, databases-maint, drieden, hhorak, jkurik, jstanek, mdshaikh, mmaslano, nobody+bgollahe, tdawson, tkramer, vdanen
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-02-20 14:26:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1054041, 1054042, 1054043, 1055875, 1055876, 1055883, 1055884, 1056440, 1056457    
Bug Blocks: 1053394    

Description Murray McAllister 2014-01-15 06:58:59 UTC
Common Vulnerabilities and Exposures assigned an identifier CVE-2014-0420 to
the following vulnerability:

Name: CVE-2014-0420
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0420
Assigned: 20131212
Reference: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Unspecified vulnerability in the MySQL Server component in Oracle
MySQL 5.5.34 and earlier, and 5.6.14 and earlier, allows remote
authenticated users to affect availability via unknown vectors related
to Replication.

Comment 2 Huzaifa S. Sidhpurwala 2014-01-16 06:54:06 UTC
Created mariadb tracking bugs for this issue:

Affects: fedora-all [bug 1054043]

Comment 3 Huzaifa S. Sidhpurwala 2014-01-16 06:54:09 UTC
Created community-mysql tracking bugs for this issue:

Affects: fedora-all [bug 1054042]

Comment 9 errata-xmlrpc 2014-02-13 18:37:59 UTC
This issue has been addressed in following products:

  Red Hat Software Collections for RHEL-6

Via RHSA-2014:0173 https://rhn.redhat.com/errata/RHSA-2014-0173.html

Comment 10 errata-xmlrpc 2014-02-18 17:56:51 UTC
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5

Via RHSA-2014:0186 https://rhn.redhat.com/errata/RHSA-2014-0186.html

Comment 11 errata-xmlrpc 2014-02-19 18:46:59 UTC
This issue has been addressed in following products:

  Red Hat Software Collections for RHEL-6

Via RHSA-2014:0189 https://rhn.redhat.com/errata/RHSA-2014-0189.html