SOL01409145 - Oracle MySQL vulnerability CVE-2016-0641

2016-08-1800:00:00

support.f5.com

0.0004 Low

EPSS

Percentile

12.6%

JSON

Vulnerability Recommended Actions

If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in theVersions known to be not vulnerable column. If the table lists only an older version than what you are currently running, or does not list a non-vulnerable version, then no upgrade candidate currently exists.

To mitigate this vulnerability for BIG-IP systems, you should permit management access to F5 products only over a secure network and limit shell access to only trusted users. For more information, refer to SOL13309: Restricting access to the Configuration utility by source IP address (11.x - 12.x) and SOL13092: Overview of securing access to the BIG-IP system.

Supplemental Information

SOL9970: Subscribing to email notifications regarding F5 products
SOL9957: Creating a custom RSS feed to view new and updated documents
SOL4602: Overview of the F5 security vulnerability response policy
SOL4918: Overview of the F5 critical issue hotfix policy
SOL167: Downloading software and firmware from F5

CPENameOperatorVersion
big-ip apmle12.1.0
big-ip aamle12.1.0
big-ip ltmle12.1.0
big-ip afmle12.1.0
big-ip webacceleratorle11.2.1
big-ip womle11.2.1
big-ip psmle11.4.1
big-ip websafele12.1.0
big-ip edge gatewayle11.2.1
big-ip gtmle11.6.1

Name	Operator	Version
big-ip apm	le	12.1.0
big-ip aam	le	12.1.0
big-ip ltm	le	12.1.0
big-ip afm	le	12.1.0
big-ip webaccelerator	le	11.2.1
big-ip wom	le	11.2.1
big-ip psm	le	11.4.1
big-ip websafe	le	12.1.0
big-ip edge gateway	le	11.2.1
big-ip gtm	le	11.6.1