Adding new Performance schema indicators
This commit is contained in:
		
						commit
						5a87c9e00e
					
				
					 9 changed files with 1128 additions and 397 deletions
				
			
		
							
								
								
									
										66
									
								
								.travis.yml
									
									
									
									
									
								
							
							
						
						
									
										66
									
								
								.travis.yml
									
									
									
									
									
								
							|  | @ -2,39 +2,47 @@ sudo: false | |||
| 
 | ||||
| language: perl | ||||
| perl: | ||||
|    - "blead" | ||||
|    - "5.20" | ||||
|    - "5.18" | ||||
|    - "5.16" | ||||
|    - "5.14" | ||||
|    - "5.12" | ||||
|    - "5.10" | ||||
|    - "5.8" | ||||
|   - "5.24" | ||||
|   - "5.22" | ||||
|   - "5.20" | ||||
|   - "5.18" | ||||
|   - "5.16" | ||||
|   - "5.14" | ||||
|   - "5.12" | ||||
|   - "5.10" | ||||
|   - "5.8" | ||||
| 
 | ||||
| matrix: | ||||
|     include: | ||||
|         - addons: | ||||
|              mariadb: "5.5" | ||||
|           perl: "5.20" | ||||
|         - addons: | ||||
|              mariadb: "10.0" | ||||
|           perl: "5.20" | ||||
| #        - addons: | ||||
| #             mariadb: "10.1" | ||||
| #          perl: "5.20" | ||||
|   include: | ||||
|   - addons: | ||||
|       mariadb: "5.5" | ||||
|     perl: "5.20" | ||||
|   - addons: | ||||
|       mariadb: "10.0" | ||||
|     perl: "5.20" | ||||
|   - addons: | ||||
|       mariadb: "10.1" | ||||
|     perl: "5.20" | ||||
|   - addons: | ||||
|       mariadb: "10.2" | ||||
|     perl: "5.20" | ||||
| 
 | ||||
| before_install: | ||||
|    - git clone git://github.com/haarg/perl-travis-helper | ||||
|    - source perl-travis-helper/init | ||||
|    - build-perl | ||||
|    - perl -V | ||||
|   - git clone git://github.com/haarg/perl-travis-helper | ||||
|   - source perl-travis-helper/init | ||||
|   - build-perl | ||||
|   - perl -V | ||||
| 
 | ||||
| install: | ||||
|    - cpanm --quiet --notest Data::Dumper | ||||
|    - cpanm --quiet --notest Text::Template | ||||
|    - cpanm --quiet --notest JSON | ||||
|     | ||||
|   - cpanm --quiet --notest Data::Dumper | ||||
|   - cpanm --quiet --notest JSON | ||||
|   - cpanm --quiet --notest Perl::Critic | ||||
|   - cpanm --quiet --notest Text::Template | ||||
| 
 | ||||
| before_script: | ||||
|   - echo -e "[client]\nuser=root\npassword=\"\"" > .my.cnf | ||||
|   - chmod 600 .my.cnf | ||||
| 
 | ||||
| script: | ||||
|    - echo -e "[client]\nuser=root\npassword=\"\"" > .my.cnf | ||||
|    - chmod 600 .my.cnf | ||||
|    - ./mysqltuner.pl --idxstat --dbstat | ||||
|   - perlcritic mysqltuner.pl | ||||
|   - ./mysqltuner.pl --idxstat --dbstat | ||||
|  |  | |||
|  | @ -182,7 +182,7 @@ Copy of the license is available at [LICENSE](https://github.com/major/MySQLTune | |||
| <a name="code-conventions"></a> | ||||
| #### MySQLTuner Code Conventions | ||||
| 
 | ||||
| 1. Check code convention using  **perltidy** | ||||
| 1. Check code convention using **perltidy** and **perlcritic** | ||||
| 2. Don't manually update the version number in `mysqltuner.pl`.  | ||||
|   | ||||
| 
 | ||||
|  |  | |||
							
								
								
									
										74
									
								
								INTERNALS.md
									
									
									
									
									
								
							
							
						
						
									
										74
									
								
								INTERNALS.md
									
									
									
									
									
								
							|  | @ -24,6 +24,7 @@ | |||
| * [GALERA information](#mysqltuner-galera-information) | ||||
| * [TOKUDB information](#mysqltuner-tokudb-information) | ||||
| * [ThreadPool information](#mysqltuner-threadpool-information) | ||||
| * [Performance Schema information](#mysqltuner-performance-schema-and-sysschema-information) | ||||
| 
 | ||||
| ## MySQLTuner steps | ||||
| 
 | ||||
|  | @ -150,6 +151,7 @@ | |||
| * Number of join performed without using indexes (<250) | ||||
| * Percentage of temporary table written on disk(<25%) | ||||
| * Thread cache (=4) | ||||
| * Thread cache hit ratio (>50%) if thread_handling is different of pools-of-threads | ||||
| * Table cache hit ratio(>2°%) | ||||
| * Percentage of open file and open file limit(<85%) | ||||
| * Percentage of table locks (<95%) | ||||
|  | @ -178,8 +180,8 @@ | |||
| ## MySQLTuner memory checks | ||||
| 
 | ||||
| * Get total RAM/swap | ||||
| * Is there enought memory for max connections reached by MySQL ? | ||||
| * Is there enought memory for max connections allowed by MySQL ? | ||||
| * Is there enough memory for max connections reached by MySQL ? | ||||
| * Is there enough memory for max connections allowed by MySQL ? | ||||
| * Max percentage of memory used(<85%) | ||||
| 
 | ||||
| ## MySQLTuner slow queries checks | ||||
|  | @ -203,7 +205,7 @@ | |||
|    * MySQL needs 1 instanes per 1Go of Buffer Pool | ||||
|    * innodb_buffer_pool instances = round(innodb_buffer_pool_size / 1Go) | ||||
|    * innodb_buffer_pool instances must be equals or lower than 64 | ||||
| *  InnoDB Buffer Pool uUsage | ||||
| *  InnoDB Buffer Pool Usage | ||||
|    * If more than 20% of InnoDB buffer pool is not used, MySQLTuner raise an alert. | ||||
| * InnoDB Read effiency | ||||
|    * Ratio of read without locks | ||||
|  | @ -211,6 +213,8 @@ | |||
|    * Ratio of write without locks | ||||
| * InnoDB Log Waits | ||||
|    * Checks that no lock is used on Innodb Log. | ||||
| * InnoDB Chunk Size | ||||
|    * Check InnoDB Buffer Pool size is a multiple of InnoDB Buffer Pool chunk size * InnoDB Buffer Pool instances | ||||
| 
 | ||||
| ## MySQLTuner ARIADB information | ||||
| 
 | ||||
|  | @ -227,9 +231,11 @@ | |||
| * Key buffer write hit ratio (>95%) | ||||
| 
 | ||||
| ## MySQLTuner Galera information | ||||
| 
 | ||||
| * wsrep_ready cluster is ready | ||||
| * wsrep_connected node is connected to other nodes | ||||
| * wsrep_cluster_name is defined. | ||||
| * wsrep_node_name is defined. | ||||
| * Check thet notification script wsrep_notify_cmd is defined | ||||
| * wsrep_cluster_status PRIMARY /NON PRIMARY. | ||||
| 	* PRIMARY : Coherent cluster | ||||
| 	* NO PRIMARY : cluster gets several states | ||||
|  | @ -240,7 +246,13 @@ | |||
| 	* SYNCED state able to read/write | ||||
| * wsrep_cluster_conf_id configuration level must be identical in all nodes | ||||
| * wsrep_last_commited committed level must be identical in all nodes | ||||
| 
 | ||||
| * Look for tables without primary keys | ||||
| * Look for non InnoDB tables for Galera | ||||
| * Variable innodb_flush_log_at_trx_commit should be set to 0. | ||||
| * Check that there is 3 or 5 members in Galera cluster. | ||||
| * Check that xtrabackup is used for SST method with wsrep_sst_method variable. | ||||
| * Check variables wsrep_OSU_method is defined to TOI for updates. | ||||
| * Check that there is no certification failures controlling wsrep_local_cert_failures status. | ||||
| 
 | ||||
| ## MySQLTuner TokuDB information | ||||
| 
 | ||||
|  | @ -258,3 +270,55 @@ | |||
| 
 | ||||
| * thread_pool_size between 16 to 36 for Innodb usage | ||||
| * thread_pool_size between 4 to 8 for MyIsam usage | ||||
| 
 | ||||
| ## MySQLTuner performance schema and sysschema information | ||||
| 
 | ||||
| * sys Schema version | ||||
| * High Cost SQL statements | ||||
| * Top 5% slower queries | ||||
| * Use temporary tables | ||||
| * Unused Indexes | ||||
| * Full table scans  | ||||
| * Top 5 user per connection | ||||
| * Top 5 user per statement | ||||
| * Top 5 user per statement latency | ||||
| * Top 5 user per lock latency | ||||
| * Top 5 user per nb full scans | ||||
| * Top 5 user per rows sent | ||||
| * Top 5 user per rows modified | ||||
| * Top 5 user per io | ||||
| * Top 5 user per io latency | ||||
| * Top 5 user per table scans | ||||
| 
 | ||||
| * Top 5 host per connection  | ||||
| * Top 5 host per statement  | ||||
| * Top 5 host per statement latency  | ||||
| * Top 5 host per lock latency  | ||||
| * Top 5 host per nb full scans  | ||||
| * Top 5 host per rows sent  | ||||
| * Top 5 host per rows modified  | ||||
| * Top 5 host per io  | ||||
| * Top 5 host per io latency  | ||||
| * Top 5 host per table scans  | ||||
| 
 | ||||
| * InnoDB Buffer Pool by schema | ||||
| * InnoDB Buffer Pool by table | ||||
| * Process per allocated memory  | ||||
| 
 | ||||
| * Top IO type order by total io | ||||
| * Top IO type order by total latency  | ||||
| * Top IO type order by max latency  | ||||
| * Top Stages order by total io  | ||||
| * Top Stages order by total latency  | ||||
| * Top Stages order by avg latency  | ||||
| * Top 5 Most latency statements  | ||||
| * Top 5 slower queries  | ||||
| * Top 10 nb statement type  | ||||
| * Top statement by total latency  | ||||
| * Top statement by lock latency  | ||||
| * Top statement by full scans  | ||||
| * Top statement by rows sent  | ||||
| * Top statement by rows modified  | ||||
| * Some queries using temp table  | ||||
| * Unused indexes | ||||
| * Tables with full table scans  | ||||
|  |  | |||
							
								
								
									
										78
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										78
									
								
								README.md
									
									
									
									
									
								
							|  | @ -3,22 +3,42 @@ MySQLTuner-perl | |||
| [](https://travis-ci.org/major/MySQLTuner-perl) | ||||
| [](http://opensource.box.com/badges) | ||||
| [](http://opensource.box.com/badges) | ||||
| [](http://isitmaintained.com/project/major/MySQLTuner-perl "Average time to resolve an issue") | ||||
| [](http://isitmaintained.com/project/major/MySQLTuner-perl "Percentage of issues still open") | ||||
| [](https://opensource.org/licenses/GPL-3.0/) | ||||
| 
 | ||||
| MySQLTuner is a script written in Perl that allows you to review a MySQL installation quickly and make adjustments to increase performance and stability.  The current configuration variables and status data is retrieved and presented in a brief format along with some basic performance suggestions. | ||||
| **MySQLTuner** is a script written in Perl that allows you to review a MySQL installation quickly and make adjustments to increase performance and stability.  The current configuration variables and status data is retrieved and presented in a brief format along with some basic performance suggestions. | ||||
| 
 | ||||
| **MySQLTuner** supports in this last version ~250 indicators for MySQL/MariaDB/Percona Server.  | ||||
| 
 | ||||
| **MySQLTuner** is maintained and indicator collect is increasing week after week supporting a lot of configuration sush as , , , Linux OS metrics, , , , ...  | ||||
| 
 | ||||
| You can found more details on this indicators  | ||||
| . | ||||
| 
 | ||||
| 
 | ||||
|  | ||||
| 
 | ||||
| MySQLTuner needs you: | ||||
| === | ||||
| 
 | ||||
| **MySQLTuner** needs contributors for documentation, code and feedbacks.. | ||||
| 
 | ||||
| * Please join us on issue track at [GitHub tracker](https://github.com/major/MySQLTuner-perl/issues)</a>. | ||||
| * Contribution guide is avalaible following [MySQLTuner contributing guide](https://github.com/major/MySQLTuner-perl/blob/master/CONTRIBUTING.md) | ||||
| * Star **MySQLTuner project** at [MySQLTuner Git Hub Project](https://github.com/major/MySQLTuner-perl) | ||||
|            | ||||
| Compatibility: | ||||
| ==== | ||||
| 
 | ||||
| * MySQL 5.7 (partial support) | ||||
| * MySQL 5.7 (full support) | ||||
| * MySQL 5.6 (full support) | ||||
| * MariaDB 10.0 (full support) | ||||
| * MariaDB 10.1 (partial support) | ||||
| * MySQL 5.5 (full support) | ||||
| * MySQL 5.1 (full support) | ||||
| * MySQL 3.23, 4.0, 4.1, 5.0, 5.1 (full support) | ||||
| * MariaDB 10.1 (full support) | ||||
| * MariaDB 10.0 (full support) | ||||
| * Percona Server 5.6 (full support) | ||||
| * Percona XtraDB cluster (full support) | ||||
| * MySQL 3.23, 4.0, 4.1, 5.0, 5.1 (partial support - deprecated version) | ||||
| * Perl 5.6 or later (with [perl-doc](http://search.cpan.org/~dapm/perl-5.14.4/pod/perldoc.pod) package) | ||||
| * Unix/Linux based operating system (tested on Linux, BSD variants, and Solaris variants) | ||||
| * Windows is not supported at this time (Help wanted !!!!!) | ||||
|  | @ -66,7 +86,9 @@ __Usage:__ Minimal usage remotely | |||
| 
 | ||||
| __Usage:__ Enable maximum output information around MySQL/MariaDb without debugging  | ||||
| 
 | ||||
| 	perl mysqltuner.pl --buffers --dbstat --idxstat | ||||
| 	perl mysqltuner.pl --verbose | ||||
| 	perl mysqltuner.pl --buffers --dbstat --idxstat --sysstat --pfstat | ||||
| 	 | ||||
| 
 | ||||
| __Usage:__ Enable CVE vulnerabilities check for your MariaDB or MySQL version | ||||
| 
 | ||||
|  | @ -91,15 +113,15 @@ __Usage:__ Enable debugging information | |||
| FAQ | ||||
| -- | ||||
| 
 | ||||
| Question: Will MySQLTuner fix my slow MySQL server? | ||||
| **Question: Will MySQLTuner fix my slow MySQL server?** | ||||
| 
 | ||||
| **No.**  MySQLTuner is a read only script.  It won't write to any configuration files, change the status of any daemons, or call your mother to wish her a happy birthday.  It will give you an overview of your server's performance and make some basic recommendations about improvements that you can make after it completes.  *Make sure you read the warning above prior to following any recommendations.* | ||||
| 
 | ||||
| Question: Can I fire my DBA now? | ||||
| **Question: Can I fire my DBA now?** | ||||
| 
 | ||||
| **MySQLTuner will not replace your DBA in any form or fashion.**  If your DBA constantly takes your parking spot and steals your lunch from the fridge, then you may want to consider it - but that's your call. | ||||
| 
 | ||||
| Question: Why does MySQLTuner keep asking me the login credentials for MySQL over and over? | ||||
| **Question: Why does MySQLTuner keep asking me the login credentials for MySQL over and over?** | ||||
| 
 | ||||
| The script will try its best to log in via any means possible.  It will check for ~/.my.cnf files, Plesk password files, and empty password root logins.  If none of those are available, then you'll be prompted for a password.  If you'd like the script to run in an automated fashion without user intervention, then create a .my.cnf file in your home directory which contains: | ||||
| 
 | ||||
|  | @ -109,7 +131,7 @@ The script will try its best to log in via any means possible.  It will check fo | |||
| 	 | ||||
| Once you create it, make sure it's owned by your user and the mode on the file is 0600.  This should prevent the prying eyes from getting your database login credentials under normal conditions.  If a [T-1000 shows up in a LAPD uniform](https://en.wikipedia.org/wiki/T-1000) and demands your database credentials, you won't have much of an option. | ||||
| 
 | ||||
| Question: Is there another way to secure credentials on latest MySQL and MariaDB distributions ? | ||||
| **Question: Is there another way to secure credentials on latest MySQL and MariaDB distributions ?** | ||||
| 
 | ||||
| You could use mysql_config_editor utilities. | ||||
| 
 | ||||
|  | @ -127,7 +149,11 @@ To get information about stored credentials, use the following command: | |||
| 	password = ***** | ||||
| 	host = localhost | ||||
| 
 | ||||
| Question: It's not working on my OS! What gives?! | ||||
| **Question: What's minimum privileges needed by a specific mysqltuner user in database ?** | ||||
| 
 | ||||
|         mysql>GRANT SELECT, PROCESS,EXECUTE, REPLICATION CLIENT,SHOW DATABASES,SHOW VIEW ON *.* FOR 'mysqltuner'@'localhost' identified by pwd1234; | ||||
| 
 | ||||
| **Question: It's not working on my OS! What gives?!** | ||||
| 
 | ||||
| These kinds of things are bound to happen.  Here are the details I need from you in order to research the problem thoroughly: | ||||
| 
 | ||||
|  | @ -138,11 +164,37 @@ These kinds of things are bound to happen.  Here are the details I need from you | |||
| * The full text of the error | ||||
| * A copy of SHOW VARIABLES and SHOW GLOBAL STATUS output (if possible) | ||||
| 
 | ||||
| Question: How to perform a CVE vulneralibity checks ? | ||||
| **Question: How to perform a CVE vulneralibity checks ?** | ||||
| 
 | ||||
| * Download vulnerabilities.csv from this repository. | ||||
| * use option --cvefile to perform CVE checks | ||||
| 
 | ||||
| **Question: How to use mysqltuner from remote host ?** | ||||
| Thanks to  [@rolandomysqldba](http://dba.stackexchange.com/users/877/rolandomysqldba) | ||||
| 
 | ||||
| * You will still have to connect like a mysql client: | ||||
| 
 | ||||
| Connection and Authentication | ||||
| 
 | ||||
| 	--host <hostname> Connect to a remote host to perform tests (default: localhost) | ||||
| 	--socket <socket> Use a different socket for a local connection | ||||
| 	--port <port>     Port to use for connection (default: 3306) | ||||
| 	--user <username> Username to use for authentication	 | ||||
| 	--pass <password> Password to use for authentication | ||||
| 	--defaults-file <path> defaulfs file for credentials | ||||
| 
 | ||||
| Since you are using a remote host, use parameters to supply values from the OS | ||||
| 
 | ||||
| 	--forcemem <size>  Amount of RAM installed in megabytes | ||||
| 	--forceswap <size> Amount of swap memory configured in megabytes | ||||
| 
 | ||||
| * You may have to contact your remote SysAdmin to ask how much RAM and swap you have | ||||
| 
 | ||||
| If the database has too many tables, or very large table, use this: | ||||
| 
 | ||||
| 	--skipsize           Don't enumerate tables and their types/sizes (default: on) | ||||
| 	                     (Recommended for servers with many tables) | ||||
| 
 | ||||
| MySQLTuner and Vagrant | ||||
| -- | ||||
| **MySQLTuner** contains following Vagrant configurations: | ||||
|  |  | |||
|  | @ -1,5 +1,11 @@ | |||
| MySQLTuner-perl | ||||
| ==== | ||||
| [](https://travis-ci.org/major/MySQLTuner-perl) | ||||
| [](http://opensource.box.com/badges) | ||||
| [](http://opensource.box.com/badges) | ||||
| [](http://isitmaintained.com/project/major/MySQLTuner-perl "Average time to resolve an issue") | ||||
| [](http://isitmaintained.com/project/major/MySQLTuner-perl "Percentage of issues still open") | ||||
| [](https://opensource.org/licenses/GPL-3.0/) | ||||
| 
 | ||||
| MySQLTuner это скрипт, написанный на Perl, который позволяет быстро произвести осмотр текущего состояния сервера баз данных MySQL  | ||||
| и составить рекомендации для увеличения производительности и стабильности работы. Выводятся текущие параметры конфигурации  | ||||
|  | @ -97,4 +103,4 @@ These kinds of things are bound to happen.  Here are the details I need from you | |||
| 	* Exact MySQL version | ||||
| 	* Where you obtained your MySQL version (OS package, source, etc) | ||||
| 	* The full text of the error | ||||
| 	* A copy of SHOW VARIABLES and SHOW GLOBAL STATUS output (if possible) | ||||
| 	* A copy of SHOW VARIABLES and SHOW GLOBAL STATUS output (if possible) | ||||
|  |  | |||
							
								
								
									
										8
									
								
								USAGE.md
									
									
									
									
									
								
							
							
						
						
									
										8
									
								
								USAGE.md
									
									
									
									
									
								
							|  | @ -1,6 +1,6 @@ | |||
| # NAME | ||||
| 
 | ||||
|     MySQLTuner 1.6.10 - MySQL High Performance Tuning Script | ||||
|     MySQLTuner 1.6.20 - MySQL High Performance Tuning Script | ||||
| 
 | ||||
| # IMPORTANT USAGE GUIDELINES | ||||
| 
 | ||||
|  | @ -18,8 +18,8 @@ You must provide the remote server's total memory when connecting to other serve | |||
|     --pass <password>    Password to use for authentication | ||||
|     --mysqladmin <path>  Path to a custom mysqladmin executable | ||||
|     --mysqlcmd <path>    Path to a custom mysql executable | ||||
| 
 | ||||
| # PERFORMANCE AND REPORTING OPTIONS | ||||
|      --defaults-file <path>  Path to a custom .my.cnf | ||||
|    =head1 PERFORMANCE AND REPORTING OPTIONS | ||||
| 
 | ||||
|     --skipsize                  Don't enumerate tables and their types/sizes (default: on) | ||||
|                                 (Recommended for servers with many tables) | ||||
|  | @ -40,6 +40,7 @@ You must provide the remote server's total memory when connecting to other serve | |||
|     --dbstat                    Print database information | ||||
|     --idxstat                   Print index information | ||||
|     --sysstat                   Print system information | ||||
|     --pfstat                    Print Performance schema  | ||||
|     --bannedports               Ports banned separated by comma(,) | ||||
|     --maxportallowed            Number of ports opened allowed on this hosts | ||||
|     --cvefile                   CVE File for vulnerability checks | ||||
|  | @ -101,6 +102,7 @@ Major Hayden - major@mhtx.net | |||
| - Joe Ashcraft | ||||
| - Jean-Marie Renouard | ||||
| - Stephan GroBberndt | ||||
| - Christian Loos | ||||
| 
 | ||||
| # SUPPORT | ||||
| 
 | ||||
|  |  | |||
|  | @ -386,7 +386,6 @@ little | |||
| biteme | ||||
| hardcore | ||||
| white | ||||
| 0 | ||||
| redwings | ||||
| 66 | ||||
| enter | ||||
|  | @ -600,6 +599,14 @@ success | |||
| albert | ||||
| mysql | ||||
| MySQL | ||||
| Mysql | ||||
| Dba | ||||
| dba | ||||
| mypass | ||||
| MyNewPass | ||||
| some_pass | ||||
| admin_pass | ||||
| obscure | ||||
| password | ||||
| new_password | ||||
| new_password1 | ||||
| new_password2 | ||||
| root-password | ||||
|  |  | |||
							
								
								
									
										1001
									
								
								mysqltuner.pl
									
									
									
									
									
								
							
							
						
						
									
										1001
									
								
								mysqltuner.pl
									
									
									
									
									
								
							
										
											
												File diff suppressed because it is too large
												Load diff
											
										
									
								
							|  | @ -276,102 +276,105 @@ | |||
| 5.6.19;5;6;19;CVE-2014-4287;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:CHARACTER SETS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70517   |   URL:http://www.securityfocus.com/bid/70517";Assigned (20140617);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6463;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:REPLICATION ROW FORMAT BINARY LOG DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70532   |   URL:http://www.securityfocus.com/bid/70532";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6463;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:REPLICATION ROW FORMAT BINARY LOG DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70532   |   URL:http://www.securityfocus.com/bid/70532";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6464;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB DML FOREIGN KEYS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70451   |   URL:http://www.securityfocus.com/bid/70451   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6464;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB DML FOREIGN KEYS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70451   |   URL:http://www.securityfocus.com/bid/70451   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6469;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and eariler and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70446   |   URL:http://www.securityfocus.com/bid/70446   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6469;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and eariler and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70446   |   URL:http://www.securityfocus.com/bid/70446   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6464;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB DML FOREIGN KEYS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70451   |   URL:http://www.securityfocus.com/bid/70451   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6464;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB DML FOREIGN KEYS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70451   |   URL:http://www.securityfocus.com/bid/70451   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6469;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70446   |   URL:http://www.securityfocus.com/bid/70446   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6469;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70446   |   URL:http://www.securityfocus.com/bid/70446   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6474;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:MEMCACHED.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6478;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   BID:70489   |   URL:http://www.securityfocus.com/bid/70489";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6478;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   BID:70489   |   URL:http://www.securityfocus.com/bid/70489";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6484;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70455   |   URL:http://www.securityfocus.com/bid/70455";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6484;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70455   |   URL:http://www.securityfocus.com/bid/70455";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6489;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier allows remote authenticated users to affect integrity and availability via vectors related to SERVER:SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70525   |   URL:http://www.securityfocus.com/bid/70525";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6491;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6500.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70444   |   URL:http://www.securityfocus.com/bid/70444   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6491;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6500.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70444   |   URL:http://www.securityfocus.com/bid/70444   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6494;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6496.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70497   |   URL:http://www.securityfocus.com/bid/70497   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6494;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6496.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70497   |   URL:http://www.securityfocus.com/bid/70497   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6491;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6500.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70444   |   URL:http://www.securityfocus.com/bid/70444   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6491;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6500.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70444   |   URL:http://www.securityfocus.com/bid/70444   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6494;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6496.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70497   |   URL:http://www.securityfocus.com/bid/70497   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6494;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6496.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70497   |   URL:http://www.securityfocus.com/bid/70497   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6495;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote attackers to affect availability via vectors related to SERVER:SSL:yaSSL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   BID:70496   |   URL:http://www.securityfocus.com/bid/70496";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6495;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote attackers to affect availability via vectors related to SERVER:SSL:yaSSL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   BID:70496   |   URL:http://www.securityfocus.com/bid/70496";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6496;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6494.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70469   |   URL:http://www.securityfocus.com/bid/70469   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6496;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL; a different vulnerability than CVE-2014-6494.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70469   |   URL:http://www.securityfocus.com/bid/70469   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6500;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6491.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70478   |   URL:http://www.securityfocus.com/bid/70478   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6500;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6491.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70478   |   URL:http://www.securityfocus.com/bid/70478   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6500;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6491.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70478   |   URL:http://www.securityfocus.com/bid/70478   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6500;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via vectors related to SERVER:SSL:yaSSL; a different vulnerability than CVE-2014-6491.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70478   |   URL:http://www.securityfocus.com/bid/70478   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to SERVER:MEMORY STORAGE ENGINE.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70516   |   URL:http://www.securityfocus.com/bid/70516";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to SERVER:MEMORY STORAGE ENGINE.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70516   |   URL:http://www.securityfocus.com/bid/70516";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6507;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70550   |   URL:http://www.securityfocus.com/bid/70550   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6507;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70550   |   URL:http://www.securityfocus.com/bid/70550   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6507;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70550   |   URL:http://www.securityfocus.com/bid/70550   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6507;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70550   |   URL:http://www.securityfocus.com/bid/70550   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6520;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70510   |   URL:http://www.securityfocus.com/bid/70510";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6530;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to CLIENT:MYSQLDUMP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70486   |   URL:http://www.securityfocus.com/bid/70486";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6530;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to CLIENT:MYSQLDUMP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70486   |   URL:http://www.securityfocus.com/bid/70486";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2014-6551;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows local users to affect confidentiality via vectors related to CLIENT:MYSQLADMIN.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70462   |   URL:http://www.securityfocus.com/bid/70462";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6551;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows local users to affect confidentiality via vectors related to CLIENT:MYSQLADMIN.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70462   |   URL:http://www.securityfocus.com/bid/70462";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6555;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70530   |   URL:http://www.securityfocus.com/bid/70530   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6555;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70530   |   URL:http://www.securityfocus.com/bid/70530   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6559;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality via vectors related to C API SSL CERTIFICATE HANDLING.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70487   |   URL:http://www.securityfocus.com/bid/70487   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6559;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality via vectors related to C API SSL CERTIFICATE HANDLING.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70487   |   URL:http://www.securityfocus.com/bid/70487   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6555;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70530   |   URL:http://www.securityfocus.com/bid/70530   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6555;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to SERVER:DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70530   |   URL:http://www.securityfocus.com/bid/70530   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.39;5;5;39;CVE-2014-6559;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality via vectors related to C API SSL CERTIFICATE HANDLING.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70487   |   URL:http://www.securityfocus.com/bid/70487   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.20;5;6;20;CVE-2014-6559;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier; and 5.6.20 and earlier; allows remote attackers to affect confidentiality via vectors related to C API SSL CERTIFICATE HANDLING.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   GENTOO:GLSA-201411-02   |   URL:http://security.gentoo.org/glsa/glsa-201411-02.xml   |   BID:70487   |   URL:http://www.securityfocus.com/bid/70487   |   SECUNIA:61579   |   URL:http://secunia.com/advisories/61579   |   SECUNIA:62073   |   URL:http://secunia.com/advisories/62073";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2014-6564;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB FULLTEXT SEARCH DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html   |   BID:70511   |   URL:http://www.securityfocus.com/bid/70511";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2014-6568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72210   |   URL:http://www.securityfocus.com/bid/72210   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2014-6568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72210   |   URL:http://www.securityfocus.com/bid/72210   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0374;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72227   |   URL:http://www.securityfocus.com/bid/72227   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150374(100191)   |   URL:http://xforce.iss.net/xforce/xfdb/100191";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0374;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72227   |   URL:http://www.securityfocus.com/bid/72227   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150374(100191)   |   URL:http://xforce.iss.net/xforce/xfdb/100191";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0381;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0382.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72214   |   URL:http://www.securityfocus.com/bid/72214   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150381(100185)   |   URL:http://xforce.iss.net/xforce/xfdb/100185";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0381;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0382.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72214   |   URL:http://www.securityfocus.com/bid/72214   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150381(100185)   |   URL:http://xforce.iss.net/xforce/xfdb/100185";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0382;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0381.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72200   |   URL:http://www.securityfocus.com/bid/72200   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150382(100184)   |   URL:http://xforce.iss.net/xforce/xfdb/100184";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0382;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0381.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72200   |   URL:http://www.securityfocus.com/bid/72200   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150382(100184)   |   URL:http://xforce.iss.net/xforce/xfdb/100184";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0385;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Pluggable Auth.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   BID:72229   |   URL:http://www.securityfocus.com/bid/72229   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   XF:oracle-cpujan2015-cve20150385(100190)   |   URL:http://xforce.iss.net/xforce/xfdb/100190";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2015-0391;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   BID:72205   |   URL:http://www.securityfocus.com/bid/72205   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150391(100186)   |   URL:http://xforce.iss.net/xforce/xfdb/100186";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2015-0391;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   BID:72205   |   URL:http://www.securityfocus.com/bid/72205   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150391(100186)   |   URL:http://xforce.iss.net/xforce/xfdb/100186";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2014-6568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72210   |   URL:http://www.securityfocus.com/bid/72210   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2014-6568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72210   |   URL:http://www.securityfocus.com/bid/72210   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732";Assigned (20140917);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0374;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72227   |   URL:http://www.securityfocus.com/bid/72227   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150374(100191)   |   URL:http://xforce.iss.net/xforce/xfdb/100191";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0374;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72227   |   URL:http://www.securityfocus.com/bid/72227   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150374(100191)   |   URL:http://xforce.iss.net/xforce/xfdb/100191";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0381;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0382.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72214   |   URL:http://www.securityfocus.com/bid/72214   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150381(100185)   |   URL:http://xforce.iss.net/xforce/xfdb/100185";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0381;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0382.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72214   |   URL:http://www.securityfocus.com/bid/72214   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150381(100185)   |   URL:http://xforce.iss.net/xforce/xfdb/100185";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0382;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0381.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72200   |   URL:http://www.securityfocus.com/bid/72200   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150382(100184)   |   URL:http://xforce.iss.net/xforce/xfdb/100184";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0382;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication; a different vulnerability than CVE-2015-0381.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   BID:72200   |   URL:http://www.securityfocus.com/bid/72200   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150382(100184)   |   URL:http://xforce.iss.net/xforce/xfdb/100184";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0385;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Pluggable Auth.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   BID:72229   |   URL:http://www.securityfocus.com/bid/72229   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   XF:oracle-cpujan2015-cve20150385(100190)   |   URL:http://xforce.iss.net/xforce/xfdb/100190";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.38;5;5;38;CVE-2015-0391;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   BID:72205   |   URL:http://www.securityfocus.com/bid/72205   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150391(100186)   |   URL:http://xforce.iss.net/xforce/xfdb/100186";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.19;5;6;19;CVE-2015-0391;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier; and 5.6.19 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   BID:72205   |   URL:http://www.securityfocus.com/bid/72205   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150391(100186)   |   URL:http://xforce.iss.net/xforce/xfdb/100186";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0405;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to XA.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0409;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   XF:oracle-cpujan2015-cve20150409(100188)   |   URL:http://xforce.iss.net/xforce/xfdb/100188";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0411;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via unknown vectors related to Server : Security : Encryption.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150411(100183)   |   URL:http://xforce.iss.net/xforce/xfdb/100183";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0411;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via unknown vectors related to Server : Security : Encryption.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150411(100183)   |   URL:http://xforce.iss.net/xforce/xfdb/100183";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0409;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   XF:oracle-cpujan2015-cve20150409(100188)   |   URL:http://xforce.iss.net/xforce/xfdb/100188";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0411;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via unknown vectors related to Server : Security : Encryption.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150411(100183)   |   URL:http://xforce.iss.net/xforce/xfdb/100183";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.21;5;6;21;CVE-2015-0411;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier; and 5.6.21 and earlier; allows remote attackers to affect confidentiality; integrity; and availability via unknown vectors related to Server : Security : Encryption.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150411(100183)   |   URL:http://xforce.iss.net/xforce/xfdb/100183";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0423;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0432;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.";"BUGTRAQ:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://www.securityfocus.com/archive/1/archive/1/535181/100/0/threaded   |   FULLDISC:20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE   |   URL:http://seclists.org/fulldisclosure/2015/Apr/5   |   MISC:http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150432(100187)   |   URL:http://xforce.iss.net/xforce/xfdb/100187";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-0433;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0433;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.40;5;5;40;CVE-2015-0432;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3135   |   URL:http://www.debian.org/security/2015/dsa-3135   |   FEDORA:FEDORA-2015-1162   |   URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html   |   REDHAT:RHSA-2015:0116   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0116.html   |   REDHAT:RHSA-2015:0117   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0117.html   |   REDHAT:RHSA-2015:0118   |   URL:http://rhn.redhat.com/errata/RHSA-2015-0118.html   |   UBUNTU:USN-2480-1   |   URL:http://www.ubuntu.com/usn/USN-2480-1   |   SECTRACK:1031581   |   URL:http://www.securitytracker.com/id/1031581   |   SECUNIA:62728   |   URL:http://secunia.com/advisories/62728   |   SECUNIA:62730   |   URL:http://secunia.com/advisories/62730   |   SECUNIA:62732   |   URL:http://secunia.com/advisories/62732   |   XF:oracle-cpujan2015-cve20150432(100187)   |   URL:http://xforce.iss.net/xforce/xfdb/100187";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-0433;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0433;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to InnoDB : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0438;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0439;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0439;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB; a different vulnerability than CVE-2015-4756.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-0441;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Encryption.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-0441;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Encryption.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0498;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-0499;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0499;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-0499;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0499;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0500;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-0501;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Compiling.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0501;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Compiling.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0503;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-0505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-0505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0505;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0506;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB; a different vulnerability than CVE-2015-0508.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0507;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0508;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB; a different vulnerability than CVE-2015-0506.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-0511;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20141217);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-2566;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-2567;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-2568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-2568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-2571;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-2571;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-2573;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-2573;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2582;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2582;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-2568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-2568;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-2571;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-2571;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5543-release-notes/   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   MANDRIVA:MDVSA-2015:227   |   URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:227   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.41;5;5;41;CVE-2015-2573;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-2573;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier; and 5.6.22 and earlier; allows remote authenticated users to affect availability via vectors related to DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   SUSE:SUSE-SU-2015:0946   |   URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2582;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2582;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2611;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2617;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect confidentiality; integrity; and availability via unknown vectors related to Partition.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2620;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-2620;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2620;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-2620;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2639;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Firewall.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2641;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2643;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2643;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2648;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2648;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2643;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2643;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-2648;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2648;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-2661;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows local users to affect availability via unknown vectors related to Client.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150320);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4737;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-4737;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4752;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4752;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-4756;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.7.3;5;7;3;CVE-2015-3152;Candidate;"Oracle MySQL before 5.7.3; Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3; and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; aka a ""BACKRONYM"" attack.";"BUGTRAQ:20150429 [oCERT-2015-003] MySQL SSL/TLS downgrade   |   URL:http://www.securityfocus.com/archive/1/archive/1/535397/100/1100/threaded   |   MISC:http://mysqlblog.fivefarmers.com/2014/04/02/redefining-ssl-option/   |   MISC:http://www.ocert.org/advisories/ocert-2015-003.html   |   MISC:https://www.duosecurity.com/blog/backronym-mysql-vulnerability   |   MISC:http://packetstormsecurity.com/files/131688/MySQL-SSL-TLS-Downgrade.html   |   CONFIRM:http://mysqlblog.fivefarmers.com/2015/04/29/ssltls-in-5-6-and-5-5-ocert-advisory/   |   CONFIRM:https://access.redhat.com/security/cve/cve-2015-3152   |   CONFIRM:https://github.com/mysql/mysql-server/commit/3bd5589e1a5a93f9c224badf983cd65c45215390   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-7937   |   SECTRACK:1032216   |   URL:http://www.securitytracker.com/id/1032216";Assigned (20150410);"None (candidate not yet proposed)"; | ||||
| 6.1.3;6;1;3;CVE-2015-3152;Candidate;"Oracle MySQL before 5.7.3; Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3; and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; aka a ""BACKRONYM"" attack.";"BUGTRAQ:20150429 [oCERT-2015-003] MySQL SSL/TLS downgrade   |   URL:http://www.securityfocus.com/archive/1/archive/1/535397/100/1100/threaded   |   MISC:http://mysqlblog.fivefarmers.com/2014/04/02/redefining-ssl-option/   |   MISC:http://www.ocert.org/advisories/ocert-2015-003.html   |   MISC:https://www.duosecurity.com/blog/backronym-mysql-vulnerability   |   MISC:http://packetstormsecurity.com/files/131688/MySQL-SSL-TLS-Downgrade.html   |   CONFIRM:http://mysqlblog.fivefarmers.com/2015/04/29/ssltls-in-5-6-and-5-5-ocert-advisory/   |   CONFIRM:https://access.redhat.com/security/cve/cve-2015-3152   |   CONFIRM:https://github.com/mysql/mysql-server/commit/3bd5589e1a5a93f9c224badf983cd65c45215390   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-7937   |   SECTRACK:1032216   |   URL:http://www.securitytracker.com/id/1032216";Assigned (20150410);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-3152;Candidate;"Oracle MySQL before 5.7.3; Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3; and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; aka a ""BACKRONYM"" attack.";"BUGTRAQ:20150429 [oCERT-2015-003] MySQL SSL/TLS downgrade   |   URL:http://www.securityfocus.com/archive/1/archive/1/535397/100/1100/threaded   |   MISC:http://mysqlblog.fivefarmers.com/2014/04/02/redefining-ssl-option/   |   MISC:http://www.ocert.org/advisories/ocert-2015-003.html   |   MISC:https://www.duosecurity.com/blog/backronym-mysql-vulnerability   |   MISC:http://packetstormsecurity.com/files/131688/MySQL-SSL-TLS-Downgrade.html   |   CONFIRM:http://mysqlblog.fivefarmers.com/2015/04/29/ssltls-in-5-6-and-5-5-ocert-advisory/   |   CONFIRM:https://access.redhat.com/security/cve/cve-2015-3152   |   CONFIRM:https://github.com/mysql/mysql-server/commit/3bd5589e1a5a93f9c224badf983cd65c45215390   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-7937   |   SECTRACK:1032216   |   URL:http://www.securitytracker.com/id/1032216";Assigned (20150410);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4737;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-4737;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier; and 5.6.23 and earlier; allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4752;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4752;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   DEBIAN:DSA-3308   |   URL:http://www.debian.org/security/2015/dsa-3308   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.22;5;6;22;CVE-2015-4756;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB; a different vulnerability than CVE-2015-0439.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.42;5;5;42;CVE-2015-4757;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-4757;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4761;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
|  | @ -381,57 +384,129 @@ | |||
| 5.6.24;5;6;24;CVE-2015-4771;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to RBR.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4772;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html   |   REDHAT:RHSA-2015:1630   |   URL:http://rhn.redhat.com/errata/RHSA-2015-1630.html   |   UBUNTU:USN-2674-1   |   URL:http://www.ubuntu.com/usn/USN-2674-1";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4791;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4792;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4802.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4792;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4802.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4800;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4802;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4792.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4802;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4792.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4815;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4815;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4816;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4819;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client programs.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4819;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client programs.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4826;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4826;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4830;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4830;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4792;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4802.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4792;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4802.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4800;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4802;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4792.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4802;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition; a different vulnerability than CVE-2015-4792.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4815;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4815;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4816;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4819;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client programs.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4819;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client programs.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4826;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4826;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4830;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4830;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4833;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4836;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4836;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4858;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via vectors related to DML; a different vulnerability than CVE-2015-4913.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4858;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via vectors related to DML; a different vulnerability than CVE-2015-4913.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4861;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4861;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4862;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4864;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4864;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4836;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4836;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : SP.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4858;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via vectors related to DML; a different vulnerability than CVE-2015-4913.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4858;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via vectors related to DML; a different vulnerability than CVE-2015-4913.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4861;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4861;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4862;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.43;5;5;43;CVE-2015-4864;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.24;5;6;24;CVE-2015-4864;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-4866;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4870;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4870;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4879;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4879;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4890;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Replication.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4870;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4870;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier; and 5.6.26 and earlier; allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.44;5;5;44;CVE-2015-4879;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4879;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier; and 5.6.25 and earlier; allows remote authenticated users to affect confidentiality; integrity; and availability via vectors related to DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4890;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Replication.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4895;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.25;5;6;25;CVE-2015-4904;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to libmysqld.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.23;5;6;23;CVE-2015-4905;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4910;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4913;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML; a different vulnerability than CVE-2015-4858.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4913;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML; a different vulnerability than CVE-2015-4858.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4910;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2015-4913;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML; a different vulnerability than CVE-2015-4858.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2015-4913;Candidate;"Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML; a different vulnerability than CVE-2015-4858.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html";Assigned (20150624);"None (candidate not yet proposed)"; | ||||
| 5.6.28;5;6;28;CVE-2015-5969;Candidate;"The mysql-systemd-helper script in the mysql-community-server package before 5.6.28-2.17.1 in openSUSE 13.2 and before 5.6.28-13.1 in openSUSE Leap 42.1 and the mariadb package before 10.0.22-2.21.2 in openSUSE 13.2 and before 10.0.22-3.1 in SUSE Linux Enterprise (SLE) 12.1 and openSUSE Leap 42.1 allows local users to discover database credentials by listing a process and its arguments.";"CONFIRM:https://bugzilla.suse.com/957174   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html   |   SUSE:openSUSE-SU-2016:0379   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00050.html";Assigned (20150812);"None (candidate not yet proposed)"; | ||||
| 2.17.1;2;17;1;CVE-2015-5969;Candidate;"The mysql-systemd-helper script in the mysql-community-server package before 5.6.28-2.17.1 in openSUSE 13.2 and before 5.6.28-13.1 in openSUSE Leap 42.1 and the mariadb package before 10.0.22-2.21.2 in openSUSE 13.2 and before 10.0.22-3.1 in SUSE Linux Enterprise (SLE) 12.1 and openSUSE Leap 42.1 allows local users to discover database credentials by listing a process and its arguments.";"CONFIRM:https://bugzilla.suse.com/957174   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html   |   SUSE:openSUSE-SU-2016:0379   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00050.html";Assigned (20150812);"None (candidate not yet proposed)"; | ||||
| 10.0.22;10;0;22;CVE-2015-5969;Candidate;"The mysql-systemd-helper script in the mysql-community-server package before 5.6.28-2.17.1 in openSUSE 13.2 and before 5.6.28-13.1 in openSUSE Leap 42.1 and the mariadb package before 10.0.22-2.21.2 in openSUSE 13.2 and before 10.0.22-3.1 in SUSE Linux Enterprise (SLE) 12.1 and openSUSE Leap 42.1 allows local users to discover database credentials by listing a process and its arguments.";"CONFIRM:https://bugzilla.suse.com/957174   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html   |   SUSE:openSUSE-SU-2016:0379   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00050.html";Assigned (20150812);"None (candidate not yet proposed)"; | ||||
| 2.21.2;2;21;2;CVE-2015-5969;Candidate;"The mysql-systemd-helper script in the mysql-community-server package before 5.6.28-2.17.1 in openSUSE 13.2 and before 5.6.28-13.1 in openSUSE Leap 42.1 and the mariadb package before 10.0.22-2.21.2 in openSUSE 13.2 and before 10.0.22-3.1 in SUSE Linux Enterprise (SLE) 12.1 and openSUSE Leap 42.1 allows local users to discover database credentials by listing a process and its arguments.";"CONFIRM:https://bugzilla.suse.com/957174   |   SUSE:SUSE-SU-2016:0296   |   URL:https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:0368   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html   |   SUSE:openSUSE-SU-2016:0379   |   URL:http://lists.opensuse.org/opensuse-updates/2016-02/msg00050.html";Assigned (20150812);"None (candidate not yet proposed)"; | ||||
| 5.5.46;5;5;46;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.6.27;5;6;27;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.7.9;5;7;9;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.5.47;5;5;47;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 10.0.23;10;0;23;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 10.1.10;10;1;10;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.5.47;5;5;47;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 10.0.23;10;0;23;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 10.1.10;10;1;10;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.5.48;5;5;48;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.6.29;5;6;29;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.7.11;5;7;11;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.4.43;5;4;43;CVE-2015-8838;Candidate;"ext/mysqlnd/mysqlnd.c in PHP before 5.4.43; 5.5.x before 5.5.27; and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; a related issue to CVE-2015-3152.";"CONFIRM:http://git.php.net/?p=php-src.git;a=commit;h=97aa752fee61fccdec361279adbfb17a3c60f3f4   |   CONFIRM:http://php.net/ChangeLog-5.php   |   CONFIRM:https://bugs.php.net/bug.php?id=69669";Assigned (20160331);"None (candidate not yet proposed)"; | ||||
| 5.5.27;5;5;27;CVE-2015-8838;Candidate;"ext/mysqlnd/mysqlnd.c in PHP before 5.4.43; 5.5.x before 5.5.27; and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; a related issue to CVE-2015-3152.";"CONFIRM:http://git.php.net/?p=php-src.git;a=commit;h=97aa752fee61fccdec361279adbfb17a3c60f3f4   |   CONFIRM:http://php.net/ChangeLog-5.php   |   CONFIRM:https://bugs.php.net/bug.php?id=69669";Assigned (20160331);"None (candidate not yet proposed)"; | ||||
| 5.6.11;5;6;11;CVE-2015-8838;Candidate;"ext/mysqlnd/mysqlnd.c in PHP before 5.4.43; 5.5.x before 5.5.27; and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional; which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack; a related issue to CVE-2015-3152.";"CONFIRM:http://git.php.net/?p=php-src.git;a=commit;h=97aa752fee61fccdec361279adbfb17a3c60f3f4   |   CONFIRM:http://php.net/ChangeLog-5.php   |   CONFIRM:https://bugs.php.net/bug.php?id=69669";Assigned (20160331);"None (candidate not yet proposed)"; | ||||
| 5.5.46;5;5;46;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.6.27;5;6;27;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.7.9;5;7;9;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.5.47;5;5;47;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 10.0.23;10;0;23;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 10.1.10;10;1;10;CVE-2016-0546;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier; 5.6.27 and earlier; and 5.7.9 and MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10 allows local users to affect confidentiality; integrity; and availability via unknown vectors related to Client.  NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name.";"CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1301493   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html   |   CONFIRM:https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html   |   CONFIRM:https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:0367   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html   |   UBUNTU:USN-2881-1   |   URL:http://www.ubuntu.com/usn/USN-2881-1";Assigned (20151209);"None (candidate not yet proposed)"; | ||||
| 5.5.47;5;5;47;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 10.0.23;10;0;23;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 10.1.10;10;1;10;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.5.48;5;5;48;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.6.29;5;6;29;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.7.11;5;7;11;CVE-2016-2047;Candidate;"The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47; 10.0.x before 10.0.23; and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate; which allows man-in-the-middle attackers to spoof SSL servers via a ""/CN="" string in a field in a certificate; as demonstrated by ""/OU=/CN=bar.com/CN=foo.com.""";"MLIST:[oss-security] 20160126 Flaw in mariadb clients SSL certificate validation   |   URL:http://www.openwall.com/lists/oss-security/2016/01/26/3   |   CONFIRM:https://mariadb.atlassian.net/browse/MDEV-9212   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mdb-10023-rn/   |   CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html   |   DEBIAN:DSA-3453   |   URL:http://www.debian.org/security/2016/dsa-3453   |   REDHAT:RHSA-2016:0534   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0534.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   SUSE:openSUSE-SU-2016:1686   |   URL:http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html";Assigned (20160122);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3424;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.11;5;7;11;CVE-2016-3440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.48;5;5;48;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.29;5;6;29;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.10;5;7;10;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.0.25;10;0;25;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.1.14;10;1;14;CVE-2016-3452;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.10 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3459;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3459;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.0.25;10;0;25;CVE-2016-3459;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.1.14;10;1;14;CVE-2016-3459;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 3.0.25;3;0;25;CVE-2016-3461;Candidate;"Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality; integrity; and availability via vectors related to Monitoring: Server.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 3.1.2;3;1;2;CVE-2016-3461;Candidate;"Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality; integrity; and availability via vectors related to Monitoring: Server.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.45;5;5;45;CVE-2016-3471;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Option.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2016-3471;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Option.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.50;5;5;50;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.0.26;10;0;26;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.1.15;10;1;15;CVE-2016-3477;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows local users to affect confidentiality; integrity; and availability via vectors related to Server: Parser.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3486;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3486;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3501;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3501;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3518;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.50;5;5;50;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.0.26;10;0;26;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.1.15;10;1;15;CVE-2016-3521;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3588;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect integrity and availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3614;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3614;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.5.50;5;5;50;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.0.26;10;0;26;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 10.1.15;10;1;15;CVE-2016-3615;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787   |   BID:91960   |   URL:http://www.securityfocus.com/bid/91960";Assigned (20160317);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5436;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5437;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-5439;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Privileges.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5439;Candidate;"Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Privileges.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.6.30;5;6;30;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.5.50;5;5;50;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 10.0.26;10;0;26;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 10.1.15;10;1;15;CVE-2016-5440;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier; 5.6.30 and earlier; and 5.7.12 and earlier and MariaDB before 5.5.50; 10.0.x before 10.0.26; and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5441;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Replication.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5442;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Security: Encryption.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.12;5;7;12;CVE-2016-5443;Candidate;"Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows local users to affect availability via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.5.48;5;5;48;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.6.29;5;6;29;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.7.11;5;7;11;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.5.49;5;5;49;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 10.0.25;10;0;25;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 10.1.14;10;1;14;CVE-2016-5444;Candidate;"Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier; 5.6.29 and earlier; and 5.7.11 and earlier and MariaDB before 5.5.49; 10.0.x before 10.0.25; and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection.";"CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5549-release-notes/   |   CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168   |   CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html   |   REDHAT:RHSA-2016:0705   |   URL:http://rhn.redhat.com/errata/RHSA-2016-0705.html   |   BID:91787   |   URL:http://www.securityfocus.com/bid/91787";Assigned (20160616);"None (candidate not yet proposed)"; | ||||
| 5.5.52;5;5;52;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.6.33;5;6;33;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.7.15;5;7;15;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.5.51;5;5;51;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 10.0.27;10;0;27;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 10.1.17;10;1;17;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.6.32;5;6;32;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.7.14;5;7;14;CVE-2016-6662;Candidate;"Oracle MySQL through 5.5.52; 5.6.x through 5.6.33; and 5.7.x through 5.7.15; MariaDB before 5.5.51; 10.0.x before 10.0.27; and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1; 5.6.x before 5.6.32-78.0; and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration.  NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib.";"EXPLOIT-DB:40360   |   URL:https://www.exploit-db.com/exploits/40360/   |   FULLDISC:20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://seclists.org/fulldisclosure/2016/Sep/23   |   MLIST:[oss-security] 20160912 CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day )   |   URL:http://www.openwall.com/lists/oss-security/2016/09/12/3   |   MISC:http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html   |   CONFIRM:https://jira.mariadb.org/browse/MDEV-10465   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/   |   CONFIRM:https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/   |   CONFIRM:https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/   |   BID:92912   |   URL:http://www.securityfocus.com/bid/92912";Assigned (20160810);"None (candidate not yet proposed)"; | ||||
| 5.6.26;5;6;26;CVE-2016-7412;Candidate;"ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag; which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.";"MLIST:[oss-security] 20160915 Re: CVE assignment for PHP 5.6.26 and 7.0.11   |   URL:http://www.openwall.com/lists/oss-security/2016/09/15/10   |   CONFIRM:http://www.php.net/ChangeLog-5.php   |   CONFIRM:http://www.php.net/ChangeLog-7.php   |   CONFIRM:https://bugs.php.net/bug.php?id=72293   |   CONFIRM:https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1";Assigned (20160909);"None (candidate not yet proposed)"; | ||||
| 7.0.11;7;0;11;CVE-2016-7412;Candidate;"ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag; which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.";"MLIST:[oss-security] 20160915 Re: CVE assignment for PHP 5.6.26 and 7.0.11   |   URL:http://www.openwall.com/lists/oss-security/2016/09/15/10   |   CONFIRM:http://www.php.net/ChangeLog-5.php   |   CONFIRM:http://www.php.net/ChangeLog-7.php   |   CONFIRM:https://bugs.php.net/bug.php?id=72293   |   CONFIRM:https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1";Assigned (20160909);"None (candidate not yet proposed)"; | ||||
|  |  | |||
| Can't render this file because it is too large. | 
		Loading…
	
		Reference in a new issue
	
	 root
						root