1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
|
PublicDateAtUSN: 2017-01-18
Candidate: CVE-2016-8318
PublicDate: 2017-01-27
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8318
http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL
http://www.ubuntu.com/usn/usn-3174-1
Description:
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent:
Server: Security: Encryption). Supported versions that are affected are
5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability
allows low privileged attacker with network access via multiple protocols
to compromise MySQL Server. Successful attacks require human interaction
from a person other than the attacker and while the vulnerability is in
MySQL Server, attacks may significantly impact additional products.
Successful attacks of this vulnerability can result in unauthorized ability
to cause a hang or frequently repeatable crash (complete DOS) of MySQL
Server. CVSS v3.0 Base Score 6.8 (Availability impacts).
Ubuntu-Description:
Notes:
mdeslaur> 5.6 and 5.7 only
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_mysql-5.5:
upstream_mysql-5.5: not-affected
precise_mysql-5.5: not-affected
precise/esm_mysql-5.5: not-affected
trusty_mysql-5.5: not-affected
vivid_mysql-5.5: DNE
vivid/ubuntu-core_mysql-5.5: DNE
vivid/stable-phone-overlay_mysql-5.5: DNE
xenial_mysql-5.5: DNE
yakkety_mysql-5.5: DNE
zesty_mysql-5.5: DNE
devel_mysql-5.5: DNE
Patches_mysql-5.6:
upstream_mysql-5.6: released (5.6.35)
precise_mysql-5.6: DNE
precise/esm_mysql-5.6: DNE
trusty_mysql-5.6: needed
vivid/ubuntu-core_mysql-5.6: DNE
vivid/stable-phone-overlay_mysql-5.6: DNE
xenial_mysql-5.6: DNE
yakkety_mysql-5.6: DNE
zesty_mysql-5.6: DNE
devel_mysql-5.6: DNE
Patches_mysql-5.7:
upstream_mysql-5.7: released (5.7.17)
precise_mysql-5.7: DNE
precise/esm_mysql-5.7: DNE
trusty_mysql-5.7: DNE
vivid/ubuntu-core_mysql-5.7: DNE
vivid/stable-phone-overlay_mysql-5.7: DNE
xenial_mysql-5.7: released (5.7.17-0ubuntu0.16.04.1)
yakkety_mysql-5.7: released (5.7.17-0ubuntu0.16.10.1)
zesty_mysql-5.7: released (5.7.17-0ubuntu1)
devel_mysql-5.7: released (5.7.17-0ubuntu1)
Patches_mariadb-5.5:
upstream_mariadb-5.5: not-affected
precise_mariadb-5.5: DNE
precise/esm_mariadb-5.5: DNE
trusty_mariadb-5.5: not-affected
vivid/ubuntu-core_mariadb-5.5: DNE
vivid/stable-phone-overlay_mariadb-5.5: DNE
xenial_mariadb-5.5: DNE
yakkety_mariadb-5.5: DNE
zesty_mariadb-5.5: DNE
devel_mariadb-5.5: DNE
Patches_mariadb-10.0:
upstream_mariadb-10.0: needs-triage
precise_mariadb-10.0: DNE
precise/esm_mariadb-10.0: DNE
trusty_mariadb-10.0: DNE
vivid/ubuntu-core_mariadb-10.0: DNE
vivid/stable-phone-overlay_mariadb-10.0: DNE
xenial_mariadb-10.0: not-affected
yakkety_mariadb-10.0: not-affected
zesty_mariadb-10.0: DNE
devel_mariadb-10.0: DNE
Patches_percona-xtradb-cluster-5.5:
upstream_percona-xtradb-cluster-5.5: needs-triage
precise_percona-xtradb-cluster-5.5: DNE
precise/esm_percona-xtradb-cluster-5.5: DNE
trusty_percona-xtradb-cluster-5.5: needed
vivid/ubuntu-core_percona-xtradb-cluster-5.5: DNE
vivid/stable-phone-overlay_percona-xtradb-cluster-5.5: DNE
xenial_percona-xtradb-cluster-5.5: DNE
yakkety_percona-xtradb-cluster-5.5: DNE
zesty_percona-xtradb-cluster-5.5: DNE
devel_percona-xtradb-cluster-5.5: DNE
Patches_percona-xtradb-cluster-5.6:
upstream_percona-xtradb-cluster-5.6: needs-triage
precise_percona-xtradb-cluster-5.6: DNE
precise/esm_percona-xtradb-cluster-5.6: DNE
trusty_percona-xtradb-cluster-5.6: DNE
vivid/ubuntu-core_percona-xtradb-cluster-5.6: DNE
vivid/stable-phone-overlay_percona-xtradb-cluster-5.6: DNE
xenial_percona-xtradb-cluster-5.6: needed
yakkety_percona-xtradb-cluster-5.6: ignored (reached end-of-life)
zesty_percona-xtradb-cluster-5.6: needed
devel_percona-xtradb-cluster-5.6: needed
Patches_percona-server-5.6:
upstream_percona-server-5.6: needs-triage
precise_percona-server-5.6: DNE
precise/esm_percona-server-5.6: DNE
trusty_percona-server-5.6: DNE
vivid/ubuntu-core_percona-server-5.6: DNE
vivid/stable-phone-overlay_percona-server-5.6: DNE
xenial_percona-server-5.6: needed
yakkety_percona-server-5.6: ignored (reached end-of-life)
zesty_percona-server-5.6: needed
devel_percona-server-5.6: needed
|