漏洞信息详情
Oracle MySQL 安全漏洞
- CNNVD编号:CNNVD-202010-956 <!--
- 危害等级: 中危-->
- 危害等级: 中危
- CVE编号: CVE-2020-14776
- 漏洞类型: 其他
- 发布时间: 2020-10-20
- 威胁类型: 远程
- 更新时间: 2021-10-14
- 厂 商:
- 漏洞来源: Red Hat
-
漏洞简介
Oracle MySQL Server是美国甲骨文(Oracle)公司的一款关系型数据库。
Oracle MySQL Server InnoDB 5.7.31及之前版本,8.0.21及之前版本存在安全漏洞,该漏洞允许高特权攻击者通过多种协议进行网络访问,从而危害MySQL Server。成功攻击此漏洞可能导致未经授权的能力导致MySQL服务器挂起或频繁重复发生崩溃(完整的DOS)。
漏洞公告
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:
https://www.oracle.com/security-alerts/cpuoct2020.html
参考网址
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/
来源:GENTOO
链接:https://security.gentoo.org/glsa/202105-27
来源:MISC
链接:https://www.oracle.com/security-alerts/cpuoct2020.html
来源:CONFIRM
链接:https://security.netapp.com/advisory/ntap-20201023-0003/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-affected-by-oracle-mysql-vulnerabilities-13/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-affected-by-oracle-mysql-vulnerabilities-12/
来源:www.nsfocus.net
链接:http://www.nsfocus.net/vulndb/50439
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-affected-by-oracle-mysql-vulnerabilities-11/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4182/
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-guardium-is-affected-by-oracle-mysql-vulnerabilities-10/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160527/Red-Hat-Security-Advisory-2020-5500-01.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160273/Red-Hat-Security-Advisory-2020-5246-01.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/164217/Red-Hat-Security-Advisory-2021-3590-01.html
来源:www.cybersecurity-help.cz
链接:https://www.cybersecurity-help.cz/vdb/SB2021092222
来源:www.oracle.com
链接:https://www.oracle.com/security-alerts/cpuoct2020.html
来源:nvd.nist.gov
链接:https://nvd.nist.gov/vuln/detail/CVE-2020-14776
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4309/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.3164
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4427/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4527/
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/Oracle-MySQL-vulnerabilities-of-October-2020-33648
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4238/
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160667/Red-Hat-Security-Advisory-2020-5654-01.html
来源:www.cybersecurity-help.cz
链接:https://www.cybersecurity-help.cz/vdb/SB2021052616
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/164475/Red-Hat-Security-Advisory-2021-3811-01.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/159720/Ubuntu-Security-Notice-USN-4604-1.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.3382
来源:www.cybersecurity-help.cz
链接:https://www.cybersecurity-help.cz/vdb/SB2021101334
受影响实体
暂无
补丁
- Oracle MySQL Server InnoDB 安全漏洞的修复措施<!--2020-10-20-->
还没有评论,来说两句吧...