Vulnerability CVE-2016-0597: Information

Description

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

Severity: MEDIUM (4.0)

URL: https://nvd.nist.gov/vuln/detail/CVE-2016-0597

Published: Jan. 21, 2016

Modified: Dec. 27, 2019

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
MySQL	sisyphus	5.5.53-alt1	8.0.37-alt1.1	ALT-PU-2016-2238-1	171749	Fixed
MySQL	p10	5.5.53-alt1	8.0.36-alt1	ALT-PU-2016-2238-1	171749	Fixed
MySQL	p9	5.5.53-alt1	8.0.26-alt2	ALT-PU-2016-2238-1	171749	Fixed
MySQL	p8	5.5.54-alt0.M80P.1	5.7.28-alt1	ALT-PU-2017-1409-1	181264	Fixed
MySQL	c10f1	5.5.53-alt1	8.0.36-alt1	ALT-PU-2016-2238-1	171749	Fixed
MySQL	c9f2	5.5.53-alt1	8.0.36-alt0.c9.1	ALT-PU-2016-2238-1	171749	Fixed
MySQL	c7	5.5.53-alt0.M70C.1	5.7.24-alt0.M70C.1	ALT-PU-2016-2259-1	171748	Fixed
mariadb	sisyphus	10.1.10-alt1	10.11.8-alt1	ALT-PU-2015-2203-1	155443	Fixed
mariadb	p10	10.1.10-alt1	10.6.18-alt1	ALT-PU-2015-2203-1	155443	Fixed
mariadb	p9	10.1.10-alt1	10.4.34-alt0.M90P.1	ALT-PU-2015-2203-1	155443	Fixed
mariadb	c10f1	10.1.10-alt1	10.6.18-alt1	ALT-PU-2015-2203-1	155443	Fixed
mariadb	c9f2	10.1.10-alt1	10.6.18-alt1	ALT-PU-2015-2203-1	155443	Fixed
mariadb	c7	10.3.14-alt0.M70C.1	10.3.14-alt0.M70C.1	ALT-PU-2019-1992-1	231405	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html	Vendor Advisory
https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/	Vendor Advisory
DSA-3453	Patch Third Party Advisory
https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/	Vendor Advisory
https://mariadb.com/kb/en/mdb-10023-rn/	Vendor Advisory
openSUSE-SU-2016:0367	Third Party Advisory
RHSA-2016:0534	Third Party Advisory
USN-2881-1	Third Party Advisory
openSUSE-SU-2016:1686	Third Party Advisory
RHSA-2016:0705	Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html	Vendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	Vendor Advisory
81151	Third Party Advisory VDB Entry
SUSE-SU-2016:1620	Mailing List Third Party Advisory
SUSE-SU-2016:1619	Mailing List Third Party Advisory
openSUSE-SU-2016:1664	Mailing List Third Party Advisory
openSUSE-SU-2016:0377	Mailing List Third Party Advisory
DSA-3459	Third Party Advisory
1034708	Third Party Advisory VDB Entry
RHSA-2016:1132	Third Party Advisory
RHSA-2016:1481	Third Party Advisory
RHSA-2016:1480	Third Party Advisory

Affected configurations:
1. Configuration 1
  cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
  
  Configuration 2
  cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*
  
  Configuration 4
  cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
  cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
  
  Configuration 5
  cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
  
  Configuration 6
  cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  
  Configuration 7
  cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
  
  Configuration 8
  cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
  Start including
  10.0.0
  End excliding
  10.0.23
  cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
  Start including
  10.1.0
  End excliding
  10.1.10
  cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
  Start including
  5.5.20
  End excliding
  5.5.47
  
  Configuration 9
  cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
  Start including
  5.5.0
  End including
  5.5.46
  cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
  Start including
  5.6.0
  End including
  5.6.27
  cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
  Start including
  5.7.0
  End including
  5.7.9

Version: v24.5.1

Vulnerability CVE-2016-0597: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5

Configuration 6

Configuration 7

Configuration 8

Configuration 9