589410 – <dev-db/mysql-{5.5.50, 5.6.31}: Multiple vulnerabilties (CVE-2016-{3459,3477,3486,3501,3521,3614,3615,5439,5440})

Bug 589410 - <dev-db/mysql-{5.5.50, 5.6.31}: Multiple vulnerabilties (CVE-2016-{3459,3477,3486,3501,3521,3614,3615,5439,5440})

Summary: <dev-db/mysql-{5.5.50, 5.6.31}: Multiple vulnerabilties (CVE-2016-{3459,3477,...

Status:	RESOLVED DUPLICATE of bug 589238

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	A2 [glsa cve]
Keywords:

Depends on:
Blocks:

Reported:	2016-07-23 02:22 UTC by Aaron Bauman (RETIRED)
Modified:	2016-07-23 02:26 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Aaron Bauman (RETIRED) gentoo-dev

2016-07-23 02:22:44 UTC

Added to existing GLSA.

Reproducible: Always

Comment 1 GLSAMaker/CVETool Bot gentoo-dev

2016-07-23 02:23:03 UTC

CVE-2016-5440 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5440):
  Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and
  earlier, and 5.7.12 and earlier allows remote administrators to affect
  availability via vectors related to Server: RBR.

CVE-2016-5439 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5439):
  Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and
  earlier allows remote administrators to affect availability via vectors
  related to Server: Privileges.

CVE-2016-3615 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3615):
  Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and
  earlier, and 5.7.12 and earlier allows remote authenticated users to affect
  availability via vectors related to Server: DML.

CVE-2016-3614 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3614):
  Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and
  earlier allows remote authenticated users to affect availability via vectors
  related to Server: Security: Encryption.

CVE-2016-3521 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3521):
  Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and
  earlier, and 5.7.12 and earlier allows remote authenticated users to affect
  availability via vectors related to Server: Types.

CVE-2016-3501 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3501):
  Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and
  earlier allows remote authenticated users to affect availability via vectors
  related to Server: Optimizer.

CVE-2016-3486 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3486):
  Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and
  earlier allows remote authenticated users to affect availability via vectors
  related to Server: FTS.

CVE-2016-3477 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3477):
  Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and
  earlier, and 5.7.12 and earlier allows local users to affect
  confidentiality, integrity, and availability via vectors related to Server:
  Parser.

CVE-2016-3459 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3459):
  Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and
  earlier allows remote administrators to affect availability via vectors
  related to Server: InnoDB.

Comment 2 Aaron Bauman (RETIRED) gentoo-dev

2016-07-23 02:26:43 UTC


*** This bug has been marked as a duplicate of bug 589238 ***