USN-2953-1: MySQL vulnerabilities

🗓️ 21 Apr 2016 15:51:54Reported by UbuntuType

ubuntu🔗 ubuntu.com👁 107 Views

MySQL vulnerabilities discovered and fixed in Ubuntu releases 12.04 LTS, 14.04 LTS, and 15.10. Update includes MySQL 5.5.49 and 5.6.30 versions with security, bug fixes, and new features

Reporter	Title	Published	Views	Family All 610
IBM Security Bulletins	Security Bulletin: OpenSource Oracle MySQL Vulnerability affects IBM Security Guardium (CVE-2016-2047)	16 Jun 201821:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (multiple CVEs)	16 Jun 201821:50	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in mariadb affect PowerKVM	18 Jun 201801:33	–	ibm
FreeBSD	MySQL -- multiple vulnerabilities	19 Apr 201600:00	–	freebsd
Tenable Nessus	MySQL 5.6.x < 5.6.29 Multiple DoS	15 Apr 201600:00	–	nessus
Tenable Nessus	Oracle MySQL 5.5.x < 5.5.48 Multiple DoS	15 Apr 201600:00	–	nessus
Tenable Nessus	Oracle MySQL 5.5.x < 5.5.48 / 5.6.x < 5.6.29 / 5.7.x < 5.7.11 Multiple Vulnerabilities	18 Apr 201600:00	–	nessus
Tenable Nessus	Oracle MySQL 5.5.x < 5.5.49 / 5.6.x < 5.6.30 / 5.7.x < 5.7.12 Multiple Vulnerabilities	26 Aug 201600:00	–	nessus
Tenable Nessus	Oracle MySQL 5.5.x < 5.5.49 X.509 Certificate Security Bypass	30 Sep 201600:00	–	nessus
Tenable Nessus	Oracle MySQL 5.6.x < 5.6.30 Multiple Vulnerabilities	30 Sep 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	14.04	any	libmysqlclient-dev	5.5.49-0ubuntu0.14.04.1	libmysqlclient-dev_5.5.49-0ubuntu0.14.04.1_any.deb
Ubuntu	12.04	any	mysql-server-5.5	5.5.49-0ubuntu0.12.04.1	mysql-server-5.5_5.5.49-0ubuntu0.12.04.1_any.deb
Ubuntu	15.10	any	mysql-server-5.6	5.6.30-0ubuntu0.15.10.1	mysql-server-5.6_5.6.30-0ubuntu0.15.10.1_any.deb

21 Apr 2016 15:51Current

6.4Medium risk

Vulners AI Score6.4

CVSS 39.8

CVSS 210

CVSS 3.14.7

EPSS0.15283

SSVC