ALAS-2012-092


Amazon Linux AMI Security Advisory: ALAS-2012-92
Advisory Release Date: 2014-09-14 16:22 Pacific
Severity: Low

Issue Overview:

A flaw was found in the way MySQL processed HANDLER READ NEXT statements after deleting a record. A remote, authenticated attacker could use this flaw to provide such requests, causing mysqld to crash. This issue only caused a temporary denial of service, as mysqld was automatically restarted after the crash. (CVE-2012-2102 )


Affected Packages:

mysql51


Issue Correction:
Run yum update mysql51 to update your system.

New Packages:
i686:
    mysql51-server-5.1.61-4.54.amzn1.i686
    mysql51-embedded-devel-5.1.61-4.54.amzn1.i686
    mysql51-common-5.1.61-4.54.amzn1.i686
    mysql51-libs-5.1.61-4.54.amzn1.i686
    mysql51-test-5.1.61-4.54.amzn1.i686
    mysql51-devel-5.1.61-4.54.amzn1.i686
    mysql51-5.1.61-4.54.amzn1.i686
    mysql51-embedded-5.1.61-4.54.amzn1.i686
    mysql51-bench-5.1.61-4.54.amzn1.i686
    mysql51-debuginfo-5.1.61-4.54.amzn1.i686

src:
    mysql51-5.1.61-4.54.amzn1.src

x86_64:
    mysql51-5.1.61-4.54.amzn1.x86_64
    mysql51-common-5.1.61-4.54.amzn1.x86_64
    mysql51-server-5.1.61-4.54.amzn1.x86_64
    mysql51-bench-5.1.61-4.54.amzn1.x86_64
    mysql51-devel-5.1.61-4.54.amzn1.x86_64
    mysql51-debuginfo-5.1.61-4.54.amzn1.x86_64
    mysql51-libs-5.1.61-4.54.amzn1.x86_64
    mysql51-test-5.1.61-4.54.amzn1.x86_64
    mysql51-embedded-5.1.61-4.54.amzn1.x86_64
    mysql51-embedded-devel-5.1.61-4.54.amzn1.x86_64