Multiple zero-day vulnerabilities have been discovered in the popular database software MySQL. This vulnerability could allow hackers to crash the service, deny access tousers, and implement privilege escalation and authentication bypass. Four of the five are completely new vulnerabilities. http://alrt.co/Vz8k45
Takeaway: While some of these vulnerabilities are now being reviewed seriously, it could still be awhile before they are fixed in the next patch. Software will always have vulnerabilities; it is only a matter of discovering them. Multi-layered, professionally managed security will help reduce the exposure of these and other vulnerabilities to attackers.