CVE-2018-2612
- Source
- https://cve.org/CVERecord?id=CVE-2018-2612
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-2612.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2018-2612
- Downstream
- Related
- Published
- 2018-01-18T02:29:19.710Z
- Modified
- 2026-02-06T04:03:32.548504Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H).
- References
-
- http://www.securitytracker.com/id/1040216
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.securityfocus.com/bid/102709
- http://www.securitytracker.com/id/1040216
- https://access.redhat.com/errata/RHSA-2018:0586
- https://access.redhat.com/errata/RHSA-2018:0587
- https://access.redhat.com/errata/RHSA-2019:1258
- https://lists.debian.org/debian-lts-announce/2018/06/msg00015.html
- https://security.netapp.com/advisory/ntap-20180117-0002/
- https://usn.ubuntu.com/3537-1/
- https://www.debian.org/security/2018/dsa-4341
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- https://lists.debian.org/debian-lts-announce/2018/06/msg00015.html
Affected packages
Git / github.com/mariadb/server
Affected versions
mariadb-10.*
mariadb-10.0.25
mariadb-10.0.26
mariadb-10.0.27
mariadb-10.0.28
mariadb-10.0.29
mariadb-10.0.30
mariadb-10.0.31
mariadb-10.0.32
mariadb-10.0.33
mariadb-10.0.34
mariadb-10.1.14
mariadb-10.1.15
mariadb-10.1.16
mariadb-10.1.17
mariadb-10.1.18
mariadb-10.1.19
mariadb-10.1.20
mariadb-10.1.21
mariadb-10.1.22
mariadb-10.1.23
mariadb-10.1.24
mariadb-10.1.25
mariadb-10.1.26
mariadb-10.1.27
mariadb-10.1.28
mariadb-10.1.29
mariadb-10.1.30
mariadb-10.1.31
mariadb-10.2.0
mariadb-10.2.1
mariadb-10.2.10
mariadb-10.2.11
mariadb-10.2.12
mariadb-10.2.2
mariadb-10.2.3
mariadb-10.2.4
mariadb-10.2.5
mariadb-10.2.6
mariadb-10.2.7
mariadb-10.2.8
mariadb-10.2.9
mariadb-5.*
mariadb-5.5.49
mariadb-5.5.50
mariadb-5.5.51
mariadb-5.5.52
mariadb-5.5.53
mariadb-5.5.54
mariadb-5.5.55
mariadb-5.5.56
mariadb-5.5.57
mariadb-5.5.58
mariadb-5.5.59
mariadb-galera-10.*
mariadb-galera-10.0.25
mariadb-galera-10.0.26
mariadb-galera-10.0.27
mariadb-galera-10.0.28
mariadb-galera-10.0.29
mariadb-galera-10.0.30
mariadb-galera-10.0.31
mariadb-galera-10.0.32
mariadb-galera-10.0.33
mariadb-galera-10.0.34
mariadb-galera-5.*
mariadb-galera-5.5.49
mariadb-galera-5.5.50
mariadb-galera-5.5.51
mysql-5.*
mysql-5.5.49
mysql-5.5.50
mysql-5.5.51
mysql-5.5.52
mysql-5.5.53
mysql-5.5.54
mysql-5.5.55
mysql-5.5.56
mysql-5.5.57
mysql-5.5.58
mysql-5.5.59
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/fsp/fsp0file.cc",
"function": "Datafile::restore_from_doublewrite"
},
"id": "CVE-2018-2612-35955af8",
"signature_version": "v1",
"digest": {
"function_hash": "130605097230749778694010073870346686670",
"length": 1054.0
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/os/os0file.cc",
"function": "os_file_write_func"
},
"id": "CVE-2018-2612-63cb60d2",
"signature_version": "v1",
"digest": {
"function_hash": "225684029145934870115777883669100534248",
"length": 960.0
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/handler/ha_innodb.cc"
},
"id": "CVE-2018-2612-73c034dd",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"270860312524047975223998427597379069133",
"138700069694352925751092711221965681083",
"73177570771323724918039668023285208338",
"334316589423847422718539826515170429787"
]
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/fsp/fsp0file.cc"
},
"id": "CVE-2018-2612-74431fcb",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"142954440393337238364499438551411317676",
"222393189091191459111113825646834264347",
"218786519671436864181379588620900852574",
"47343729200658771295506502538095007608",
"114042143539907191956327849716988713876"
]
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/log/log0recv.cc"
},
"id": "CVE-2018-2612-79f1104b",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"185075245068664039325029482465215810291",
"332123619142345873462417961515224028149",
"279792484854263699879640871403809161912",
"26110594930125329989886054578182194610"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "extra/mariabackup/xtrabackup.cc",
"function": "xtrabackup_backup_func"
},
"id": "CVE-2018-2612-84ac66cb",
"signature_version": "v1",
"digest": {
"function_hash": "316540848342180118779221857666050078639",
"length": 9466.0
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/fsp/fsp0sysspace.cc"
},
"id": "CVE-2018-2612-93e2b7d3",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"36077434821275875247811855456353572105",
"160581400765285351176714843658421363508",
"766346996563297499073672373392412876",
"211150773200112696487715150603501049777"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/log/log0recv.cc",
"function": "recv_init_crash_recovery_spaces"
},
"id": "CVE-2018-2612-9a1f1e99",
"signature_version": "v1",
"digest": {
"function_hash": "68988844885919766892113874866915131823",
"length": 2117.0
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "extra/mariabackup/xtrabackup.cc",
"function": "xb_load_tablespaces"
},
"id": "CVE-2018-2612-9ed06d3d",
"signature_version": "v1",
"digest": {
"function_hash": "61688056747625301825107397785610625027",
"length": 1435.0
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "extra/mariabackup/xtrabackup.cc"
},
"id": "CVE-2018-2612-c8156020",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"10836350722366508992115719304931899919",
"313172078672241696523004237139405359507",
"127803409878542658969602070866683137262",
"50652555589067442011188990995813019082",
"283928848828838093908684271187431787106",
"299074893176668912988681797415969708150",
"6321873636136299859751854381117970802",
"324440987259170321930944114802905990638",
"173258812540214653539287437580893304143"
]
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/include/fsp0file.h"
},
"id": "CVE-2018-2612-d7da5a49",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"75278074706413613809406016363572072456",
"137935962809119759940085893828396599894",
"264338671440348818089795647450576095197",
"205375926455532591392422900073845632398",
"108292044452921360659566642416443155746"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/handler/ha_innodb.cc",
"function": "innodb_make_page_dirty"
},
"id": "CVE-2018-2612-dd1d00db",
"signature_version": "v1",
"digest": {
"function_hash": "245222482251486452532970526960647548905",
"length": 742.0
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/fsp/fsp0sysspace.cc",
"function": "SysTablespace::read_lsn_and_check_flags"
},
"id": "CVE-2018-2612-edef8987",
"signature_version": "v1",
"digest": {
"function_hash": "120134255564222204347753978400896185616",
"length": 1114.0
},
"deprecated": false
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/00f0c039d2f4213ccf0a0202349ecb162a799989",
"target": {
"file": "storage/innobase/os/os0file.cc"
},
"id": "CVE-2018-2612-f5650a73",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"215992549750288932437508368358727087603",
"216474942203275196967132544327490846901",
"39406859376278680657854698126409261900",
"7697263132410919682525481477251438694",
"57904983498328393684578034683468974781"
]
},
"deprecated": false
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-2612.json"