CVE-2016-0597

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2016-0597
Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

4.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Vendor Advisory
https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/ Vendor Advisory
http://www.debian.org/security/2016/dsa-3453 Patch Third Party Advisory
https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/ Vendor Advisory
https://mariadb.com/kb/en/mdb-10023-rn/ Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-0534.html Third Party Advisory
http://www.ubuntu.com/usn/USN-2881-1 Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-0705.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html Vendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html Vendor Advisory
http://www.securityfocus.com/bid/81151 Third Party Advisory VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html Mailing List Third Party Advisory
http://www.debian.org/security/2016/dsa-3459 Third Party Advisory
http://www.securitytracker.com/id/1034708 Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2016:1132 Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1481.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1480.html Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Configuration 5 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

Configuration 6 (hide)

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 7 (hide)

OR cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*

Configuration 8 (hide)

OR cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Configuration 9 (hide)

OR cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2016-01-21 03:02

Updated : 2019-12-27 16:08

NVD link : CVE-2016-0597

Mitre link : CVE-2016-0597

JSON object : View

Products Affected

oracle

  • solaris
  • mysql
  • linux

debian

  • debian_linux

redhat

  • enterprise_linux_server_eus
  • enterprise_linux_hpc_node_eus
  • enterprise_linux
  • enterprise_linux_desktop
  • enterprise_linux_hpc_node
  • enterprise_linux_server
  • enterprise_linux_server_aus
  • enterprise_linux_workstation

canonical

  • ubuntu_linux

opensuse

  • leap
  • opensuse

mariadb

  • mariadb
CWE
NVD-CWE-noinfo