ubuntu · CVE-2012-5611

Quick triage

Priority: medium Published: 2012-12-03 00:00:00 UTC Updated: 2025-05-26 12:47:58 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2012-5611 medium priority: Ubuntu including 3 source packages (mysql-5.1, mysql-5.5, mysql-dfsg-5.1), 18 status rows across 6 suites (hardy, lucid, oneiric, precise, quantal, upstream): DNE 11, released 4, needs-triage 3.

Description:

Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.

cvelogic Threat Intelligence