Vulnerability CVE-2021-2390: Information

Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

Severity: MEDIUM (5.9) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2021-2390
Published: July 21, 2021
Modified: June 28, 2022
Error type identifier: CWE-191

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
MySQLsisyphus8.0.26-alt18.0.36-alt1ALT-PU-2021-2461-1281108Fixed
MySQLsisyphus_riscv648.0.27-alt1.0.rv648.0.30-alt0.2.rv64ALT-PU-2021-4503-1-Fixed
MySQLp108.0.26-alt18.0.36-alt1ALT-PU-2021-2477-1282098Fixed
MySQLp98.0.26-alt18.0.26-alt2ALT-PU-2021-2571-1282101Fixed
MySQLc10f18.0.26-alt18.0.36-alt1ALT-PU-2021-2477-1282098Fixed
MySQLc9f28.0.26-alt28.0.36-alt0.c9.1ALT-PU-2021-3668-1291746Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://www.oracle.com/security-alerts/cpujul2021.html
  • Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-881/
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20210723-0001/
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*
      Start including
      5.7.0
      End including
      5.7.34
      cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*
      Start including
      8.0.0
      End including
      8.0.25

      Configuration 2

      cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.0
Back to top