MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Galera is a synchronous multi-master cluster for MariaDB.

Security Fix(es):

A permissions flaw was discovered in the MySQL logging functionality, which allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly exploit this flaw to run arbitrary commands with root privileges on the system running the database server. (CVE-2016-6662)

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64mariadb-galera-server< 5.5.42-5.el7ostmariadb-galera-server-5.5.42-5.el7ost.x86_64.rpm
RedHat7x86_64mariadb-galera-common< 5.5.42-5.el7ostmariadb-galera-common-5.5.42-5.el7ost.x86_64.rpm
RedHat7x86_64mariadb-galera-debuginfo< 5.5.42-5.el7ostmariadb-galera-debuginfo-5.5.42-5.el7ost.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	mariadb-galera-server	< 5.5.42-5.el7ost	mariadb-galera-server-5.5.42-5.el7ost.x86_64.rpm
RedHat	7	x86_64	mariadb-galera-common	< 5.5.42-5.el7ost	mariadb-galera-common-5.5.42-5.el7ost.x86_64.rpm
RedHat	7	x86_64	mariadb-galera-debuginfo	< 5.5.42-5.el7ost	mariadb-galera-debuginfo-5.5.42-5.el7ost.x86_64.rpm

slackware 1

suse 8

openvas 28

f5 2

nessus 52

prion 1

osv 4

veracode 1

debian 3

redhat 12

fedora 2

mariadbunix 1

nvd 1

cve 1

cloudfoundry 1

cvelist 1

freebsd 3

alpinelinux 1

ubuntu 1

ibm 4

ubuntucve 1

amazon 2

redhatcve 1

exploitdb 3

thn 3

exploitpack 3

threatpost 2

archlinux 1

zdt 3

seebug 3

packetstorm 3

oraclelinux 3

checkpoint_advisories 1

centos 2

gentoo 1

oracle 1

slackware

[slackware-security] mariadb / mysql

2016-09-13 20:15:07

suse

Security update for mariadb (important)

2016-09-27 21:12:05

Security update for mariadb (important)

2016-10-04 17:09:01

Security update for mariadb (important)

2016-09-27 19:14:25

openvas

Slackware: Security Advisory (SSA:2016-257-01)

2022-04-21 00:00:00

MariaDB 'my.conf' Security Bypass Vulnerability - Linux

2016-09-26 00:00:00

MariaDB 'my.conf' Security Bypass Vulnerability - Windows

2016-09-26 00:00:00

SOL72255110 - MySQL vulnerability CVE-2016-6662

2016-09-26 00:00:00

K72255110 : MySQL vulnerability CVE-2016-6662

2016-09-26 00:00:00

nessus

SUSE SLES12 Security Update : mariadb (SUSE-SU-2016:2395-1)

2016-09-28 00:00:00

Ubuntu 14.04 LTS / 16.04 LTS : MySQL vulnerability (USN-3078-1)

2016-09-15 00:00:00

Fedora 23 : 1:mariadb (2016-58f90ae3cc)

2016-10-06 00:00:00

prion

Design/Logic Flaw

2016-09-20 18:59:00

osv

mysql-5.5 - security update

2016-09-16 00:00:00

CVE-2017-15365

2018-01-25 16:29:00

CVE-2020-15180

2021-05-27 20:15:07

veracode

Arbitrary Code Execution

2019-01-15 09:13:35

debian

[SECURITY] [DLA 624-1] mysql-5.5 security update

2016-09-16 15:37:59

[SECURITY] [DSA 3666-1] mysql-5.5 security update

2016-09-14 15:13:34

[SECURITY] [DSA 3666-1] mysql-5.5 security update

2016-09-14 15:13:34

redhat

(RHSA-2016:2060) Important: mariadb-galera security and bug fix update

2016-10-13 05:07:39

(RHSA-2016:2058) Important: mariadb-galera security update

2016-10-13 05:07:34

(RHSA-2016:2061) Important: mariadb-galera security and bug fix update

2016-10-13 05:07:42

fedora

[SECURITY] Fedora 24 Update: community-mysql-5.7.15-1.fc24

2016-09-27 03:57:17

[SECURITY] Fedora 23 Update: mariadb-10.0.27-1.fc23

2016-10-03 20:22:41

mariadbunix

CVE-2016-6662

2016-09-20 18:59:00

nvd

CVE-2016-6662

2016-09-20 18:59:00

cve

CVE-2016-6662

2016-09-20 18:59:00

cloudfoundry

CVE-2016-6662 - Multiple MySQL Vulnerabilities | Cloud Foundry

2016-09-28 00:00:00

cvelist

CVE-2016-6662

2016-09-20 18:00:00

freebsd

Remote-Code-Execution vulnerability in mysql and its variants CVE 2016-6662

2016-09-12 00:00:00

mysql -- Remote Root Code Execution

2016-09-12 00:00:00

Remote-Code-Execution vulnerability in mysql and its variants CVE 2016-6662

2016-09-12 00:00:00

alpinelinux

CVE-2016-6662

2016-09-20 18:59:00

ubuntu

MySQL vulnerability

2016-09-13 00:00:00

ibm

Security Bulletin: MySQL 0-day exploit (CVE-2016-6662)

2018-12-08 04:55:34

Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (CVE-2016-6662)

2018-06-16 21:47:55

Security Bulletin: Vulnerabilities in mariadb affect PowerKVM

2018-06-18 01:34:53

ubuntucve

CVE-2016-6662

2016-09-12 00:00:00

amazon

Important: mysql55, mysql56

2016-10-12 17:00:00

Important: mysql51

2017-02-22 18:00:00

redhatcve

CVE-2016-6662

2016-12-15 20:18:44

exploitdb

MySQL / MariaDB / PerconaDB 5.5.51/5.6.32/5.7.14 - Code Execution / Privilege Escalation

2016-09-12 00:00:00

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'mysql' System User Privilege Escalation / Race Condition

2016-11-01 00:00:00

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation

2016-11-01 00:00:00

thn

New MySQL Zero Days — Hacking Website Databases

2016-09-12 06:14:00

Why Database Patching Best Practice Just Doesn't Work and How to Fix It

2021-10-18 16:00:00

Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)

2016-11-02 21:16:00

exploitpack

MySQL MariaDB PerconaDB 5.5.515.6.325.7.14 - Code Execution Privilege Escalation

2016-09-12 00:00:00

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - mysql System User Privilege Escalation Race Condition

2016-11-01 00:00:00

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - root System User Privilege Escalation

2016-11-01 00:00:00

threatpost

Critical MySQL Vulnerability Disclosed

2016-09-12 11:00:58

Critical MySQL Vulnerabilities Can Lead to Server Compromise

2016-11-02 14:02:10

archlinux

mariadb: multiple issues

2016-09-14 00:00:00

zdt

MySQL / MariaDB / PerconaDB 5.5.52 / 5.6.33 / 5.7.15 - Code Execution / Privilege Escalation

2016-09-12 00:00:00

MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition

2016-11-02 00:00:00

seebug

MySQL <= 5.7.15 remote Root code execution vulnerability

2016-09-13 00:00:00

MySQL / MariaDB / PerconaDB 提权/条件竞争漏洞（CVE-2016-6663）

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB elevation of privilege vulnerability, CVE-2016-6664）

2016-11-02 00:00:00

packetstorm

MySQL 5.7.15 / 5.6.33 / 5.5.52 Remote Code Execution

2016-09-12 00:00:00

MySQL / MariaDB / PerconaDB Privilege Escalation / Race Condition

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB Root Privilege Escalation

2016-11-02 00:00:00

oraclelinux

mysql security update

2017-01-24 00:00:00

mariadb security and bug fix update

2016-11-09 00:00:00

mariadb security and bug fix update

2017-08-07 00:00:00

checkpoint_advisories

MySQL Remote Code Execution (CVE-2016-6662; CVE-2016-6663; CVE-2016-6664)

2016-09-20 00:00:00

centos

mysql security update

2017-01-26 22:35:43

mariadb security update

2016-11-25 16:00:08

gentoo

MariaDB and MySQL: Multiple vulnerabilities

2017-01-01 00:00:00

oracle

Oracle Critical Patch Update - October 2016

2016-10-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.009

Percentile

83.2%

JSON

Related for RHSA-2016:2062