{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"MySQL Server Version 5.1.28 et ant\u00e9rieures","product":{"name":"MySQL","vendor":{"name":"Oracle","scada":false}}},{"description":"MySQL Server Version 5.5.28 et ant\u00e9rieures","product":{"name":"MySQL","vendor":{"name":"Oracle","scada":false}}},{"description":"MySQL Server Version 5.5.27 et ant\u00e9rieures","product":{"name":"MySQL","vendor":{"name":"Oracle","scada":false}}},{"description":"MySQL Server Version 5.1.66 et ant\u00e9rieures","product":{"name":"MySQL","vendor":{"name":"Oracle","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2012-1702","url":"https://www.cve.org/CVERecord?id=CVE-2012-1702"},{"name":"CVE-2012-0578","url":"https://www.cve.org/CVERecord?id=CVE-2012-0578"},{"name":"CVE-2013-0385","url":"https://www.cve.org/CVERecord?id=CVE-2013-0385"},{"name":"CVE-2013-0375","url":"https://www.cve.org/CVERecord?id=CVE-2013-0375"},{"name":"CVE-2013-0371","url":"https://www.cve.org/CVERecord?id=CVE-2013-0371"},{"name":"CVE-2013-0384","url":"https://www.cve.org/CVERecord?id=CVE-2013-0384"},{"name":"CVE-2013-0386","url":"https://www.cve.org/CVERecord?id=CVE-2013-0386"},{"name":"CVE-2012-5096","url":"https://www.cve.org/CVERecord?id=CVE-2012-5096"},{"name":"CVE-2012-5060","url":"https://www.cve.org/CVERecord?id=CVE-2012-5060"},{"name":"CVE-2012-1705","url":"https://www.cve.org/CVERecord?id=CVE-2012-1705"},{"name":"CVE-2012-0572","url":"https://www.cve.org/CVERecord?id=CVE-2012-0572"},{"name":"CVE-2013-0367","url":"https://www.cve.org/CVERecord?id=CVE-2013-0367"},{"name":"CVE-2012-0574","url":"https://www.cve.org/CVERecord?id=CVE-2012-0574"},{"name":"CVE-2012-5612","url":"https://www.cve.org/CVERecord?id=CVE-2012-5612"},{"name":"CVE-2013-0368","url":"https://www.cve.org/CVERecord?id=CVE-2013-0368"},{"name":"CVE-2013-0389","url":"https://www.cve.org/CVERecord?id=CVE-2013-0389"},{"name":"CVE-2013-0383","url":"https://www.cve.org/CVERecord?id=CVE-2013-0383"},{"name":"CVE-2012-5611","url":"https://www.cve.org/CVERecord?id=CVE-2012-5611"}],"links":[],"reference":"CERTA-2013-AVI-034","revisions":[{"description":"version initiale.","revision_date":"2013-01-16T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">Oracle MySQL</span>. Certaines d'entre elles permettent \u00e0\nun attaquant d'ex\u00e9cuter du code arbitraire \u00e0 distance au moyen de\nrequ\u00eates SQL sp\u00e9cialement con\u00e7ues.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Oracle CPUJan2013 du 15 janvier 2013","url":"http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html"}]}