Vulnerability CVE-2021-2178: Information

Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-2178
Published: April 23, 2021
Modified: Nov. 7, 2023

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
MySQLsisyphus8.0.23-alt18.0.36-alt1ALT-PU-2021-1338-1266017Fixed
MySQLsisyphus_riscv648.0.27-alt1.0.rv648.0.30-alt0.2.rv64ALT-PU-2021-4503-1-Fixed
MySQLp108.0.23-alt18.0.36-alt1ALT-PU-2021-1338-1266017Fixed
MySQLp98.0.25-alt28.0.26-alt2ALT-PU-2021-2380-1277424Fixed
MySQLc10f18.0.23-alt18.0.36-alt1ALT-PU-2021-1338-1266017Fixed
MySQLc9f28.0.26-alt28.0.36-alt0.c9.1ALT-PU-2021-3668-1291746Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://www.oracle.com/security-alerts/cpuapr2021.html
  • Vendor Advisory
https://security.netapp.com/advisory/ntap-20210513-0002/
  • Third Party Advisory
FEDORA-2021-01189f6361
    FEDORA-2021-5b6c69a73a
      FEDORA-2021-b8b7829a83

          1. Configuration 1

            cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
            Start including
            8.0.0
            End including
            8.0.22
            cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
            Start including
            5.7.0
            End including
            5.7.32

            Configuration 2

            cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
            cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
            cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

            Configuration 3

            cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
            cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
            cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
            cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
            cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
        VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
        Version: v24.4.2
        Back to top