Test ID:	1.3.6.1.4.1.25623.1.0.841785
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-2170-1)
Summary:	The remote host is missing an update for the 'mysql-5.5' package(s) announced via the USN-2170-1 advisory.
Description:	Summary: The remote host is missing an update for the 'mysql-5.5' package(s) announced via the USN-2170-1 advisory. Vulnerability Insight: Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.37. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: [links moved to references] Additionally, Matthias Reichl discovered that the mysql-5.5 packages were missing the patches applied previously in the mysql-5.1 packages to drop the default test database and localhost permissions granting access to any databases starting with 'test_'. This update reintroduces these patches for Ubuntu 12.04 LTS, Ubuntu 12.10, and Ubuntu 13.10. Existing test databases and permissions will not be modified on upgrade. To manually restrict access for existing installations, please refer to the following: [link moved to references] Affected Software/OS: 'mysql-5.5' package(s) on Ubuntu 12.04, Ubuntu 12.10, Ubuntu 13.10, Ubuntu 14.04. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0001 102713 http://osvdb.org/102713 102714 http://www.osvdb.org/102714 1029708 http://www.securitytracker.com/id/1029708 52161 http://secunia.com/advisories/52161 65298 http://www.securityfocus.com/bid/65298 GLSA-201409-04 http://security.gentoo.org/glsa/glsa-201409-04.xml MDVSA-2014:029 http://www.mandriva.com/security/advisories?name=MDVSA-2014:029 RHSA-2014:0164 http://rhn.redhat.com/errata/RHSA-2014-0164.html RHSA-2014:0173 http://rhn.redhat.com/errata/RHSA-2014-0173.html RHSA-2014:0186 http://rhn.redhat.com/errata/RHSA-2014-0186.html RHSA-2014:0189 http://rhn.redhat.com/errata/RHSA-2014-0189.html http://bazaar.launchpad.net/~maria-captains/maria/5.5/revision/2502.565.64 https://bugzilla.redhat.com/show_bug.cgi?id=1054592 https://mariadb.com/kb/en/mariadb-5535-changelog/ mysql-cve20140001-bo(90901) https://exchange.xforce.ibmcloud.com/vulnerabilities/90901 Common Vulnerability Exposure (CVE) ID: CVE-2014-0384 RedHat Security Advisories: RHSA-2014:0522 http://rhn.redhat.com/errata/RHSA-2014-0522.html RedHat Security Advisories: RHSA-2014:0536 http://rhn.redhat.com/errata/RHSA-2014-0536.html RedHat Security Advisories: RHSA-2014:0537 http://rhn.redhat.com/errata/RHSA-2014-0537.html RedHat Security Advisories: RHSA-2014:0702 http://rhn.redhat.com/errata/RHSA-2014-0702.html Common Vulnerability Exposure (CVE) ID: CVE-2014-2419 BugTraq ID: 66880 http://www.securityfocus.com/bid/66880 Common Vulnerability Exposure (CVE) ID: CVE-2014-2430 BugTraq ID: 66858 http://www.securityfocus.com/bid/66858 Common Vulnerability Exposure (CVE) ID: CVE-2014-2431 BugTraq ID: 66890 http://www.securityfocus.com/bid/66890 Common Vulnerability Exposure (CVE) ID: CVE-2014-2432 BugTraq ID: 66875 http://www.securityfocus.com/bid/66875 Common Vulnerability Exposure (CVE) ID: CVE-2014-2436 BugTraq ID: 66896 http://www.securityfocus.com/bid/66896 Common Vulnerability Exposure (CVE) ID: CVE-2014-2438 BugTraq ID: 66846 http://www.securityfocus.com/bid/66846 Common Vulnerability Exposure (CVE) ID: CVE-2014-2440 BugTraq ID: 66850 http://www.securityfocus.com/bid/66850
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.