Red Hat Bugzilla – Bug 841354
CVE-2012-1735 mysql: unspecified vulnerability related to Server Optimizer DoS
Last modified: 2012-09-04 16:07:01 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2012-1735 to
the following vulnerability:
Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier
allows remote authenticated users to affect availability via unknown
vectors related to Server Optimizer.
According to upstream security page, this issue only affected MySQL 5.5.x versions and did not affect 5.1.x versions. MySQL versions shipped with Red Hat Enterprise Linux are older than 5.5 (5.0.x in Red Hat Enterprise Linux 5 and 5.1.x in Red Hat Enterprise Linux 6). MySQL packages in Fedora are already updated to fixed upstream version (all supported Fedora versions currently have 5.5.25a).
Upstream has not provided any further details about this flaw.