Candidate: CVE-2017-3589
PublicDate: 2017-04-24 19:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3589
 http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
Description:
 Vulnerability in the MySQL Connectors component of Oracle MySQL
 (subcomponent: Connector/J). Supported versions that are affected are
 5.1.41 and earlier. Easily "exploitable" vulnerability allows low
 privileged attacker with logon to the infrastructure where MySQL Connectors
 executes to compromise MySQL Connectors. Successful attacks of this
 vulnerability can result in unauthorized update, insert or delete access to
 some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3
 (Integrity impacts). CVSS Vector:
 (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N [3.3 LOW]

Patches_mysql-connector-java:
upstream_mysql-connector-java: released (5.1.42-1)
precise_mysql-connector-java: ignored (reached end-of-life)
precise/esm_mysql-connector-java: DNE (precise was needed)
trusty_mysql-connector-java: ignored (out of standard support)
trusty/esm_mysql-connector-java: needed
vivid/stable-phone-overlay_mysql-connector-java: DNE
vivid/ubuntu-core_mysql-connector-java: DNE
xenial_mysql-connector-java: ignored (end of standard support, was needed)
yakkety_mysql-connector-java: ignored (reached end-of-life)
zesty_mysql-connector-java: ignored (reached end-of-life)
artful_mysql-connector-java: ignored (reached end-of-life)
bionic_mysql-connector-java: not-affected (5.1.45-1)
cosmic_mysql-connector-java: not-affected (5.1.45-2)
disco_mysql-connector-java: DNE
eoan_mysql-connector-java: DNE
focal_mysql-connector-java: DNE
groovy_mysql-connector-java: DNE
hirsute_mysql-connector-java: DNE
impish_mysql-connector-java: DNE
jammy_mysql-connector-java: DNE
devel_mysql-connector-java: DNE