this would be useful; I am currently tracking some 12 CVE's in 2014 already --- CVE: CVE-2014-0001 SEVERITY: High DESCRIPTION: Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string. *************************** 2. row *************************** CVE: CVE-2014-0386 SEVERITY: Medium DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. *************************** 3. row *************************** CVE: CVE-2014-0393 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect integrity via unknown vectors related to InnoDB. *************************** 4. row *************************** CVE: CVE-2014-0401 SEVERITY: Medium DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors. *************************** 5. row *************************** CVE: CVE-2014-0402 SEVERITY: Medium DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Locking. *************************** 6. row *************************** CVE: CVE-2014-0412 SEVERITY: Medium DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. *************************** 7. row *************************** CVE: CVE-2014-0420 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.34 and earlier, and 5.6.14 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Replication. *************************** 8. row *************************** CVE: CVE-2014-0427 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via vectors related to FTS. *************************** 9. row *************************** CVE: CVE-2014-0430 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema. *************************** 10. row *************************** CVE: CVE-2014-0431 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-5881. *************************** 11. row *************************** CVE: CVE-2014-0433 SEVERITY: Medium DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote attackers to affect availability via unknown vectors related to Thread Pooling. *************************** 12. row *************************** CVE: CVE-2014-0437 SEVERITY: Low DESCRIPTION: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. ---