A rash of zero-day exploits and vulnerabilities in the MySQL database were disclosed to the Full Disclosure mailing list over the weekend. Of the half-dozen zero-days reported by a researcher known as King Cope, all but one require legitimate credentials to access the Oracle-owned database. Experts are saying they re much ado about nothing. Most of the bugs lead to system crashes or denial of service conditions. Oracle acquired Sun Microsystems in 2009 as part of its $7.4 billion acquisition of MicroSystems.
Source: https://threatpost.com/experts-downplay-mysql-database-zero-days-120312/77269/