Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-vurx-quz5-sbdg

Summary mysql: insecure error log file handling in mysqld_safe (CPU Oct 2016)

Aliases

alias	CVE-2016-5617

Fixed_packages

Affected_packages

url pkg:rpm/redhat/mariadb@1:5.5.56-2?arch=el7

purl pkg:rpm/redhat/mariadb@1:5.5.56-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-f8p4-hpsh-2fcw

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-tyes-eb5w-jqfa

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v165-afmm-w3er

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mariadb@1:5.5.56-2%3Farch=el7

url pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el6

purl pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3c35-xvzk-eqdc

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-g1pp-9qqg-1beb

vulnerability	VCID-gp4w-bdxg-6kab

vulnerability	VCID-gyjy-c8wc-qubd

vulnerability	VCID-mfgg-7s54-gqg8

vulnerability	VCID-rted-6vzz-mbcv

vulnerability	VCID-skzt-r7sx-1ucv

vulnerability	VCID-tvdv-3ed5-h3dt

vulnerability	VCID-vh5y-15tw-d7fd

vulnerability	VCID-vurx-quz5-sbdg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql55-mysql@5.5.52-1%3Farch=el6

url pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el7

purl pkg:rpm/redhat/mysql55-mysql@5.5.52-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3c35-xvzk-eqdc

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-g1pp-9qqg-1beb

vulnerability	VCID-gp4w-bdxg-6kab

vulnerability	VCID-gyjy-c8wc-qubd

vulnerability	VCID-mfgg-7s54-gqg8

vulnerability	VCID-rted-6vzz-mbcv

vulnerability	VCID-skzt-r7sx-1ucv

vulnerability	VCID-tvdv-3ed5-h3dt

vulnerability	VCID-vh5y-15tw-d7fd

vulnerability	VCID-vurx-quz5-sbdg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql55-mysql@5.5.52-1%3Farch=el7

url pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el6

purl pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3%3Farch=el6

url pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el7

purl pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb100-mariadb@1:10.0.33-3%3Farch=el7

url pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el7

purl pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12%3Farch=el7

url pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el6

purl pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-galera@25.3.12-12%3Farch=el6

url pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el6

purl pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3%3Farch=el6

url pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el7

purl pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gmc-pj6y-rkfx

vulnerability	VCID-2gyq-q761-h3br

vulnerability	VCID-2rf6-qaey-1ubn

vulnerability	VCID-4cnj-7fur-3qe3

vulnerability	VCID-4yz4-vxnh-b3dp

vulnerability	VCID-5sjj-599v-vybg

vulnerability	VCID-6g4n-3xfu-hfee

vulnerability	VCID-6muh-rg1z-pqab

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-9f48-53dz-13an

vulnerability	VCID-9w98-nfg2-muh2

vulnerability	VCID-bhxk-8byp-eyap

vulnerability	VCID-cnb3-dy3a-8bdp

vulnerability	VCID-ej67-ayfh-sqdt

vulnerability	VCID-fabc-rma2-myab

vulnerability	VCID-jgff-4jyp-9fgr

vulnerability	VCID-mde2-1ynu-auh2

vulnerability	VCID-nkdd-suwp-4ffr

vulnerability	VCID-p623-gxyv-g7fs

vulnerability	VCID-pv92-6p9x-v7bs

vulnerability	VCID-r2cz-9kjz-zbgu

vulnerability	VCID-rssq-mfc2-ckaf

vulnerability	VCID-un5y-y9sq-1ufb

vulnerability	VCID-v4gv-g9n5-ukgc

vulnerability	VCID-vurx-quz5-sbdg

vulnerability	VCID-wrna-cc9g-sqbe

vulnerability	VCID-yx79-3g2x-pqex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mariadb101-mariadb@1:10.1.29-3%3Farch=el7

url pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el6

purl pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3c35-xvzk-eqdc

vulnerability	VCID-4maq-x6xs-x7gm

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-g1pp-9qqg-1beb

vulnerability	VCID-gp4w-bdxg-6kab

vulnerability	VCID-rted-6vzz-mbcv

vulnerability	VCID-skzt-r7sx-1ucv

vulnerability	VCID-tvdv-3ed5-h3dt

vulnerability	VCID-vh5y-15tw-d7fd

vulnerability	VCID-vurx-quz5-sbdg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2%3Farch=el6

url pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el7

purl pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3c35-xvzk-eqdc

vulnerability	VCID-4maq-x6xs-x7gm

vulnerability	VCID-8djb-knkk-s3c8

vulnerability	VCID-g1pp-9qqg-1beb

vulnerability	VCID-gp4w-bdxg-6kab

vulnerability	VCID-rted-6vzz-mbcv

vulnerability	VCID-skzt-r7sx-1ucv

vulnerability	VCID-tvdv-3ed5-h3dt

vulnerability	VCID-vh5y-15tw-d7fd

vulnerability	VCID-vurx-quz5-sbdg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql56-mysql@5.6.34-2%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5617.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5617.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1386564
reference_id	1386564
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1386564

reference_url	https://access.redhat.com/errata/RHSA-2016:2130
reference_id	RHSA-2016:2130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2130

reference_url	https://access.redhat.com/errata/RHSA-2016:2749
reference_id	RHSA-2016:2749
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2749

reference_url	https://access.redhat.com/errata/RHSA-2017:2192
reference_id	RHSA-2017:2192
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2192

reference_url	https://access.redhat.com/errata/RHSA-2018:0279
reference_id	RHSA-2018:0279
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:0279

reference_url	https://access.redhat.com/errata/RHSA-2018:0574
reference_id	RHSA-2018:0574
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:0574

Weaknesses

Exploits

date_added	2016-11-01
description	MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`false`
source_date_published	2016-11-01
exploit_type	local
platform	linux
source_date_updated	2017-01-30
data_source	Exploit-DB
source_url	https://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.html

Severity_range_score 7.8 - 7.8

Exploitability 2.0

Weighted_severity 7.0

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vurx-quz5-sbdg

Vulnerability Instance