Launchpad.net

CVE 2018-3058

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: MyISAM). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

Related bugs and status

CVE-2018-3058 (Candidate) is related to these bugs:

Bug #1779715: USN-3629-3: partially applies to MariaDB too

		In	Importance	Status
1779715	USN-3629-3: partially applies to MariaDB too	mariadb-5.5 (Ubuntu)	Undecided	Fix Released
1779715	USN-3629-3: partially applies to MariaDB too	mariadb-10.0 (Ubuntu)	Undecided	Fix Released
1779715	USN-3629-3: partially applies to MariaDB too	mariadb-10.1 (Ubuntu)	Undecided	Fix Released

Bug #1791010: 128 bit float precision breaks mysql self-tests (stalls cosmic updates)

Summary				In	Importance	Status
	1791010	128 bit float precision breaks mysql self-tests (stalls cosmic updates)		mysql-5.7 (Ubuntu)	Undecided	Fix Released

Bug #1814258: USN-3867-1: Partially applies to MariaDB too

		In	Importance	Status
1814258	USN-3867-1: Partially applies to MariaDB too	mariadb-5.5 (Ubuntu)	Medium	Fix Released
1814258	USN-3867-1: Partially applies to MariaDB too	mariadb-10.0 (Ubuntu)	Medium	Fix Released
1814258	USN-3867-1: Partially applies to MariaDB too	mariadb-10.1 (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2018-3058

Related bugs and status

Related bugs

References