Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2015-0445
HistoryNov 17, 2015 - 12:36 a.m.

Updated mariadb packages fix security vulnerabilities

2015-11-1700:36:58
Gentoo Foundation
advisories.mageia.org
13

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

77.2%

JSON

This update provides the upstream 10.0.22 maintenance release and fixes the following security issues: Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition, a different vulnerability than CVE-2015-4792. (CVE-2015-4802) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL. (CVE-2015-4815) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types. (CVE-2015-4826) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges. (CVE-2015-4830) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : SP. (CVE-2015-4836) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2015-4913. (CVE-2015-4858) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB. (CVE-2015-4861) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser. (CVE-2015-4870) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858. (CVE-2015-4913) Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition, a different vulnerability than CVE-2015-4802. (CVE-2015-4792) For other fixes in this update, see the referenced release notes.

OSVersionArchitecturePackageVersionFilename
Mageia5noarchmariadb< 10.0.22-1mariadb-10.0.22-1.mga5

Related

archlinux 1
openvas 23
nessus 30
suse 3
freebsd 1
debian 4
f5 2
prion 10
ubuntucve 10
cve 10
mariadbunix 10
oraclelinux 1
osv 1
redhat 6
ubuntu 1
centos 1
symantec 1
ibm 1
fedora 4
veracode 10
checkpoint_advisories 1
packetstorm 1
exploitpack 1
zdt 1
amazon 1
exploitdb 1
securityvulns 1
oracle 1
archlinux
archlinux
mariadb: denial of service
2015-10-30 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0445)
2015-11-17 00:00:00
openSUSE: Security Advisory for Security (openSUSE-SU-2015:2244-1)
2015-12-11 00:00:00
openSUSE: Security Advisory for Security (openSUSE-SU-2015:2246-1)
2015-12-11 00:00:00
nessus
nessus
openSUSE Security Update : mariadb (openSUSE-2015-884)
2015-12-17 00:00:00
FreeBSD : MySQL - Multiple vulnerabilities (851a0eea-88aa-11e5-90e7-b499baebfeaf)
2015-11-12 00:00:00
openSUSE Security Update : MariaDB 5.5.46 (openSUSE-2015-890)
2015-12-18 00:00:00
suse
suse
Security update to MariaDB 10.0.22 (important)
2015-12-10 12:13:12
Security update to MariaDB 5.5.46 (important)
2015-12-10 13:10:14
Security update to MySQL 5.6.27 (important)
2015-12-10 12:12:21
freebsd
freebsd
MySQL - Multiple vulnerabilities
2015-11-10 00:00:00
debian
debian
[SECURITY] [DSA 3377-1] mysql-5.5 security update
2015-10-24 08:06:52
[SECURITY] [DSA 3377-1] mysql-5.5 security update
2015-10-24 08:07:10
[SECURITY] [DSA 3385-1] mariadb-10.0 security update
2015-10-31 08:23:38
f5
f5
SOL59010802 - Multiple MySQL vulnerabilities
2015-12-15 00:00:00
K59010802 : Multiple MySQL vulnerabilities
2015-12-15 00:00:00
prion
prion
Design/Logic Flaw
2015-10-21 21:59:00
Design/Logic Flaw
2015-10-21 21:59:00
Design/Logic Flaw
2015-10-22 00:00:00
ubuntucve
ubuntucve
CVE-2015-4802
2015-10-21 00:00:00
CVE-2015-4792
2015-10-21 00:00:00
CVE-2015-4858
2015-10-21 00:00:00
cve
cve
CVE-2015-4802
2015-10-21 21:59:00
CVE-2015-4792
2015-10-21 21:59:00
CVE-2015-4913
2015-10-22 00:00:00
mariadbunix
mariadbunix
CVE-2015-4792
2015-10-21 21:59:00
CVE-2015-4802
2015-10-21 21:59:00
CVE-2015-4858
2015-10-21 23:59:00
oraclelinux
oraclelinux
mariadb security and bug fix update
2016-03-31 00:00:00
osv
osv
mysql-5.5 packages as an option announcement
2015-12-16 00:00:00
redhat
redhat
(RHSA-2016:22610) Moderate: mariadb security and bug fix update
2016-02-03 05:00:00
(RHSA-2016:0534) Moderate: mariadb security and bug fix update
2016-03-31 14:15:24
(RHSA-2016:1481) Moderate: mariadb55-mariadb security update
2016-07-25 07:45:27
ubuntu
ubuntu
MySQL vulnerabilities
2015-10-26 00:00:00
centos
centos
mariadb security update
2016-03-31 20:53:35
symantec
symantec
SA106 : MySQL Vulnerabilities October 2015
2015-12-17 08:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in OpenSource Oracle Mysql affect IBM Security Guardium Database Activity Monitor
2018-06-16 21:38:45
fedora
fedora
[SECURITY] Fedora 22 Update: mariadb-10.0.23-1.fc22
2016-03-05 22:51:47
[SECURITY] Fedora 23 Update: mariadb-10.0.23-1.fc23
2016-02-21 16:34:44
[SECURITY] Fedora 23 Update: community-mysql-5.6.29-1.fc23
2016-03-09 20:22:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:17
Privilege Escalation
2019-05-02 05:29:17
Information Disclosure
2019-05-02 05:29:17
checkpoint_advisories
checkpoint_advisories
MySQL Failed Memory Allocation Denial of Service (CVE-2015-4870)
2016-06-08 00:00:00
packetstorm
packetstorm
MySQL Procedure Analyse Denial Of Service
2016-05-28 00:00:00
exploitpack
exploitpack
MySQL 5.5.45 - procedure analyse Function Denial of Service
2016-05-30 00:00:00
zdt
zdt
MySQL 5.5.45 - procedure analyse Function Denial of Service
2016-05-30 00:00:00
amazon
amazon
Important: mysql56
2016-04-06 14:40:00
exploitdb
exploitdb
MySQL 5.5.45 - procedure analyse Function Denial of Service
2016-05-30 00:00:00
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-11-02 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2015
2015-10-20 00:00:00

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

77.2%

JSON
Related for MGASA-2015-0445
archlinux1openvas23nessus30suse3freebsd1debian4f52prion10ubuntucve10cve10mariadbunix10oraclelinux1osv1redhat6ubuntu1centos1symantec1ibm1fedora4veracode10checkpoint_advisories1packetstorm1exploitpack1zdt1amazon1exploitdb1securityvulns1oracle1