CVE 2014-0001
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
Related bugs and status
CVE-2014-0001 (Candidate) is related to these bugs:
Bug #1181238: [DOC] CVE page
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1181238 | [DOC] CVE page | Percona Server moved to https://jira.percona.com/projects/PS | Wishlist | Triaged | ||
| 1181238 | [DOC] CVE page | Percona Server moved to https://jira.percona.com/projects/PS 5.1 | Wishlist | Won't Fix | ||
| 1181238 | [DOC] CVE page | Percona Server moved to https://jira.percona.com/projects/PS 5.5 | Wishlist | Triaged | ||
| 1181238 | [DOC] CVE page | Percona Server moved to https://jira.percona.com/projects/PS 5.6 | Wishlist | Triaged | ||
| 1181238 | [DOC] CVE page | Percona Server moved to https://jira.percona.com/projects/PS 5.7 | Wishlist | Triaged | ||
Bug #1309662: mysql 5.5.37 security update tracking bug
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1309662 | mysql 5.5.37 security update tracking bug | mysql-5.5 (Ubuntu) | Undecided | Fix Released | ||
| 1309662 | mysql 5.5.37 security update tracking bug | mysql-5.5 (Ubuntu Precise) | Undecided | Fix Released | ||
| 1309662 | mysql 5.5.37 security update tracking bug | mysql-5.5 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1309662 | mysql 5.5.37 security update tracking bug | mysql-5.5 (Ubuntu Saucy) | Undecided | Fix Released | ||
| 1309662 | mysql 5.5.37 security update tracking bug | mysql-5.5 (Ubuntu Quantal) | Undecided | Fix Released | ||
Bug #1313187: USN-2170-1: MySQL vulnerabilities also applies to MariaDB
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1313187 | USN-2170-1: MySQL vulnerabilities also applies to MariaDB | mariadb-5.5 (Ubuntu) | Undecided | Fix Released | ||
| 1313187 | USN-2170-1: MySQL vulnerabilities also applies to MariaDB | mariadb-5.5 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1313187 | USN-2170-1: MySQL vulnerabilities also applies to MariaDB | mariadb-5.5 (Ubuntu Utopic) | Undecided | Fix Released | ||
Bug #1313566: mysql 5.6.17 security update tracking bug
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1313566 | mysql 5.6.17 security update tracking bug | mysql-5.6 (Ubuntu) | High | Fix Released | ||
| 1313566 | mysql 5.6.17 security update tracking bug | mysql-5.6 (Ubuntu Trusty) | High | Fix Released | ||
| 1313566 | mysql 5.6.17 security update tracking bug | mysql-5.6 (Ubuntu Utopic) | High | Fix Released | ||
Bug #1325916: Update to 5.5.37 for security updates
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1325916 | Update to 5.5.37 for security updates | percona-xtradb-cluster-5.5 (Ubuntu) | Undecided | Fix Released | ||
| 1325916 | Update to 5.5.37 for security updates | percona-xtradb-cluster-5.5 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1325916 | Update to 5.5.37 for security updates | percona-xtradb-cluster-5.5 (Ubuntu Utopic) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
