Candidate: CVE-2017-3469
PublicDate: 2017-04-24 19:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3469
 http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
Description:
 Vulnerability in the MySQL Workbench component of Oracle MySQL
 (subcomponent: Workbench: Security : Encryption). Supported versions that
 are affected are 6.3.8 and earlier. Difficult to exploit vulnerability
 allows unauthenticated attacker with network access via multiple protocols
 to compromise MySQL Workbench. Successful attacks of this vulnerability can
 result in unauthorized read access to a subset of MySQL Workbench
 accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS
 Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N [3.7 LOW]

Patches_mysql-workbench:
upstream_mysql-workbench: released (6.3.10+dfsg-3)
precise_mysql-workbench: ignored (reached end-of-life)
precise/esm_mysql-workbench: DNE (precise was needs-triage)
trusty_mysql-workbench: ignored (reached end-of-life)
trusty/esm_mysql-workbench: DNE (trusty was needs-triage)
vivid/stable-phone-overlay_mysql-workbench: DNE
vivid/ubuntu-core_mysql-workbench: DNE
xenial_mysql-workbench: ignored (end of standard support, was needed)
yakkety_mysql-workbench: ignored (reached end-of-life)
zesty_mysql-workbench: ignored (reached end-of-life)
artful_mysql-workbench: ignored (reached end-of-life)
bionic_mysql-workbench: needed
cosmic_mysql-workbench: not-affected (6.3.10+dfsg-3ubuntu1)
disco_mysql-workbench: DNE
eoan_mysql-workbench: not-affected (6.3.10+dfsg-3ubuntu1)
focal_mysql-workbench: DNE
groovy_mysql-workbench: DNE
hirsute_mysql-workbench: DNE
impish_mysql-workbench: not-affected
devel_mysql-workbench: not-affected