CVE-2014-0437 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

Affected Software

Name	Vendor	Start Version	End Version
Mysql	Oracle	5.1.0 (including)	5.1.72 (excluding)
Mysql	Oracle	5.5.0 (including)	5.5.34 (excluding)
Mysql	Oracle	5.6.0 (including)	5.6.14 (excluding)
Red Hat Enterprise Linux 5	RedHat	mysql55-mysql-0:5.5.36-2.el5	*
Red Hat Enterprise Linux 6	RedHat	mysql-0:5.1.73-3.el6_5	*
Red Hat Software Collections for RHEL-6	RedHat	mysql55-mysql-0:5.5.36-1.1.el6	*
Red Hat Software Collections for RHEL-6	RedHat	mariadb55-mariadb-0:5.5.35-1.1.el6	*
Mysql-5.5	Ubuntu	devel	*
Mysql-5.5	Ubuntu	precise	*
Mysql-5.5	Ubuntu	quantal	*
Mysql-5.5	Ubuntu	raring	*
Mysql-5.5	Ubuntu	saucy	*
Mysql-5.5	Ubuntu	upstream	*
Mysql-dfsg-5.1	Ubuntu	lucid	*
Mysql-dfsg-5.1	Ubuntu	upstream	*

References

http://osvdb.org/102074
http://rhn.redhat.com/errata/RHSA-2014-0164.html
http://rhn.redhat.com/errata/RHSA-2014-0173.html
http://rhn.redhat.com/errata/RHSA-2014-0186.html
http://rhn.redhat.com/errata/RHSA-2014-0189.html
http://secunia.com/advisories/56491
http://secunia.com/advisories/56541
http://secunia.com/advisories/56580
http://security.gentoo.org/glsa/glsa-201409-04.xml
http://ubuntu.com/usn/usn-2086-1
http://www.debian.org/security/2014/dsa-2845
http://www.debian.org/security/2014/dsa-2848
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64849
https://exchange.xforce.ibmcloud.com/vulnerabilities/90385

NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-0437
CWE	https://cwe.mitre.org/data/definitions/.html