Advisories ยป MGASA-2015-0255

Updated mysql-connector-java package fixes security vulnerability

Publication date: 05 Jul 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-2575


Difficult to exploit vulnerability allows successful authenticated network
attacks via multiple protocols. Successful attack of this vulnerability
can result in unauthorized update, insert or delete access to some MySQL
Connectors accessible data as well as read access to a subset of MySQL
Connectors accessible data (CVE-2015-2575).

The mysql-connector-java package has been updated to version 5.1.35 to fix
this issue and several other bugs