Lucene search
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2015-889.NASLHistoryDec 17, 2015 - 12:00 a.m.
openSUSE Security Update : mysql (openSUSE-2015-889) (BACKRONYM)
2015-12-1700:00:00
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.944
Percentile
99.3%
MySQL was updated to 5.6.27 to fix security issues and bugs.
The following vulnerabilities were fixed as part of the upstream release [boo#951391]: CVE-2015-1793, CVE-2015-0286, CVE-2015-0288, CVE-2015-1789, CVE-2015-4730, CVE-2015-4766, CVE-2015-4792, CVE-2015-4800, CVE-2015-4802, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4833, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4862, CVE-2015-4864, CVE-2015-4866, CVE-2015-4870, CVE-2015-4879, CVE-2015-4890, CVE-2015-4895, CVE-2015-4904, CVE-2015-4905, CVE-2015-4910, CVE-2015-4913
Details on these and other changes can be found at:
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html
The following security relevant changes are included additionally :
- CVE-2015-3152: MySQL lacked SSL enforcement. Using
–ssl-verify-server-cert and --ssl[-*] implies that the ssl connection is required. The mysql client will now print an error if ssl is required, but the server can not handle a ssl connection [boo#924663], [boo#928962]
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2015-889.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(87442);
script_version("2.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2015-0286", "CVE-2015-0288", "CVE-2015-1789", "CVE-2015-1793", "CVE-2015-3152", "CVE-2015-4730", "CVE-2015-4766", "CVE-2015-4792", "CVE-2015-4800", "CVE-2015-4802", "CVE-2015-4815", "CVE-2015-4816", "CVE-2015-4819", "CVE-2015-4826", "CVE-2015-4830", "CVE-2015-4833", "CVE-2015-4836", "CVE-2015-4858", "CVE-2015-4861", "CVE-2015-4862", "CVE-2015-4864", "CVE-2015-4866", "CVE-2015-4870", "CVE-2015-4879", "CVE-2015-4890", "CVE-2015-4895", "CVE-2015-4904", "CVE-2015-4905", "CVE-2015-4910", "CVE-2015-4913");
script_name(english:"openSUSE Security Update : mysql (openSUSE-2015-889) (BACKRONYM)");
script_summary(english:"Check for the openSUSE-2015-889 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"MySQL was updated to 5.6.27 to fix security issues and bugs.
The following vulnerabilities were fixed as part of the upstream
release [boo#951391]: CVE-2015-1793, CVE-2015-0286, CVE-2015-0288,
CVE-2015-1789, CVE-2015-4730, CVE-2015-4766, CVE-2015-4792,
CVE-2015-4800, CVE-2015-4802, CVE-2015-4815, CVE-2015-4816,
CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4833,
CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4862,
CVE-2015-4864, CVE-2015-4866, CVE-2015-4870, CVE-2015-4879,
CVE-2015-4890, CVE-2015-4895, CVE-2015-4904, CVE-2015-4905,
CVE-2015-4910, CVE-2015-4913
Details on these and other changes can be found at:
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html
The following security relevant changes are included additionally :
- CVE-2015-3152: MySQL lacked SSL enforcement. Using
--ssl-verify-server-cert and --ssl[-*] implies that the
ssl connection is required. The mysql client will now
print an error if ssl is required, but the server can
not handle a ssl connection [boo#924663], [boo#928962]"
);
# http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html
script_set_attribute(
attribute:"see_also",
value:"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=924663"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=928962"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=951391"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected mysql packages."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client_r18");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client_r18-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-bench");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-bench-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-client-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-errormessages");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-test-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-tools-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.1");
script_set_attribute(attribute:"patch_publication_date", value:"2015/12/10");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/17");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE13\.1|SUSE13\.2|SUSE42\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1 / 13.2 / 42.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client18-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client18-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client_r18-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-bench-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-bench-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-client-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-client-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-debugsource-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-errormessages-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-test-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-test-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-tools-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-tools-debuginfo-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client18-32bit-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client18-debuginfo-32bit-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client_r18-32bit-5.6.27-7.13.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client18-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client18-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client_r18-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-bench-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-bench-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-client-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-client-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-debugsource-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-errormessages-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-test-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-test-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-tools-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-tools-debuginfo-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client18-32bit-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client18-debuginfo-32bit-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client_r18-32bit-5.6.27-2.12.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"libmysql56client18-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"libmysql56client18-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"libmysql56client_r18-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-bench-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-bench-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-client-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-client-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-debugsource-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-errormessages-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-test-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-test-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-tools-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"mysql-community-server-tools-debuginfo-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"libmysql56client18-32bit-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"libmysql56client18-debuginfo-32bit-5.6.27-8.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"libmysql56client_r18-32bit-5.6.27-8.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libmysql56client18-32bit / libmysql56client18 / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | 13.1 | cpe:/o:novell:opensuse:13.1 |
| novell | opensuse | libmysql56client18 | p-cpe:/a:novell:opensuse:libmysql56client18 |
| novell | opensuse | libmysql56client18-32bit | p-cpe:/a:novell:opensuse:libmysql56client18-32bit |
| novell | opensuse | libmysql56client18-debuginfo | p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo |
| novell | opensuse | libmysql56client18-debuginfo-32bit | p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo-32bit |
| novell | opensuse | libmysql56client_r18 | p-cpe:/a:novell:opensuse:libmysql56client_r18 |
| novell | opensuse | libmysql56client_r18-32bit | p-cpe:/a:novell:opensuse:libmysql56client_r18-32bit |
| novell | opensuse | mysql-community-server | p-cpe:/a:novell:opensuse:mysql-community-server |
| novell | opensuse | mysql-community-server-bench | p-cpe:/a:novell:opensuse:mysql-community-server-bench |
| novell | opensuse | 13.2 | cpe:/o:novell:opensuse:13.2 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0286
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0288
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1789
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3152
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4730
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4766
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4792
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4800
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4802
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4815
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4816
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4819
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4826
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4830
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4833
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4836
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4858
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4861
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4862
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4864
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4866
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4870
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4879
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4890
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4895
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4904
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4905
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4910
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4913
bugzilla.opensuse.org/show_bug.cgi?id=924663
bugzilla.opensuse.org/show_bug.cgi?id=928962
bugzilla.opensuse.org/show_bug.cgi?id=951391
dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2303-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-2781-1)
2015-10-27 00:00:00
openSUSE: Security Advisory for Security (openSUSE-SU-2015:2243-1)
2015-12-11 00:00:00
nessus
nessus
SUSE SLED11 / SLES11 Security Update : mysql (SUSE-SU-2015:2303-1)
2015-12-21 00:00:00
Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2781-1)
2015-10-27 00:00:00
Debian DSA-3385-1 : mariadb-10.0 - security update
2015-11-02 00:00:00
f5
f5
SOL59010802 - Multiple MySQL vulnerabilities
2015-12-15 00:00:00
K59010802 : Multiple MySQL vulnerabilities
2015-12-15 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2015-10-26 00:00:00
suse
suse
Security update to MySQL 5.6.27 (important)
2015-12-10 12:12:21
Security update to MariaDB 5.5.46 (important)
2015-12-10 13:10:14
Security update to MariaDB 10.0.22 (important)
2015-12-10 12:13:12
symantec
symantec
SA106 : MySQL Vulnerabilities October 2015
2015-12-17 08:00:00
debian
debian
[SECURITY] [DSA 3385-1] mariadb-10.0 security update
2015-10-31 08:23:38
[SECURITY] [DSA 3385-1] mariadb-10.0 security update
2015-10-31 08:23:38
[SECURITY] [DSA 3377-1] mysql-5.5 security update
2015-10-24 08:06:52
ibm
ibm
archlinux
archlinux
mariadb: denial of service
2015-10-30 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2015-11-17 00:36:58
freebsd
freebsd
MySQL - Multiple vulnerabilities
2015-11-10 00:00:00
redhat
redhat
(RHSA-2016:22610) Moderate: mariadb security and bug fix update
2016-02-03 05:00:00
(RHSA-2016:0534) Moderate: mariadb security and bug fix update
2016-03-31 14:15:24
(RHSA-2016:1481) Moderate: mariadb55-mariadb security update
2016-07-25 07:45:27
fedora
fedora
[SECURITY] Fedora 22 Update: community-mysql-5.6.29-1.fc22
2016-03-09 20:17:15
[SECURITY] Fedora 23 Update: community-mysql-5.6.29-1.fc23
2016-03-09 20:22:00
[SECURITY] Fedora 22 Update: mariadb-10.0.23-1.fc22
2016-03-05 22:51:47
oraclelinux
oraclelinux
mariadb security and bug fix update
2016-03-31 00:00:00
osv
osv
mysql-5.5 packages as an option announcement
2015-12-16 00:00:00
amazon
amazon
Important: mysql56
2016-04-06 14:40:00
centos
centos
mariadb security update
2016-03-31 20:53:35
cvelist
cvelist
prion
prion
Design/Logic Flaw
2015-10-21 21:59:00
Design/Logic Flaw
2015-10-22 00:00:00
Design/Logic Flaw
2015-10-21 21:59:00
ubuntucve
ubuntucve
cve
cve
mariadbunix
mariadbunix
nvd
nvd
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:17
Denial Of Service (DoS)
2019-05-02 05:29:18
Denial Of Service (DoS)
2019-05-02 05:34:17
zdt
zdt
MySQL 5.5.45 - procedure analyse Function Denial of Service
2016-05-30 00:00:00
checkpoint_advisories
checkpoint_advisories
MySQL Failed Memory Allocation Denial of Service (CVE-2015-4870)
2016-06-08 00:00:00
packetstorm
packetstorm
MySQL Procedure Analyse Denial Of Service
2016-05-28 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.944
Percentile
99.3%
Related for OPENSUSE-2015-889.NASL