VulnerableCode Package Details - pkg:deb/ubuntu/mariadb-5.5@5.5.63-1ubuntu0.14.04.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-392n-3v4z-aaap Aliases: CVE-2016-0605	CVE-2016-0605 mysql: unspecified vulnerability in subcomponent: Server: General (CPU January 2016)	There are no reported fixed by versions.
VCID-5gce-xruf-aaac Aliases: CVE-2016-0595	CVE-2016-0595 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)	There are no reported fixed by versions.
VCID-86v3-cu3g-aaab Aliases: CVE-2016-0503	CVE-2016-0503 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)	There are no reported fixed by versions.
VCID-bgyf-gb9r-aaaq Aliases: CVE-2016-0601	CVE-2016-0601 mysql: unspecified vulnerability in subcomponent: Server: Partition (CPU January 2016)	There are no reported fixed by versions.
VCID-e3aa-2adq-aaar Aliases: CVE-2016-0607	CVE-2016-0607 mysql: unspecified vulnerability in subcomponent: Server: Replication (CPU January 2016)	There are no reported fixed by versions.
VCID-e7cu-qe98-aaaa Aliases: CVE-2019-2627	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	5.5.64-1ubuntu0.14.04.1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-mha5-nydk-aaaj Aliases: CVE-2019-2614	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).	5.5.64-1ubuntu0.14.04.1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-nvhx-8rmr-aaam Aliases: CVE-2016-0594	CVE-2016-0594 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)	There are no reported fixed by versions.
VCID-qt9z-7q1n-aaad Aliases: CVE-2016-0599	CVE-2016-0599 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)	There are no reported fixed by versions.
VCID-rb4c-gkfx-aaah Aliases: CVE-2016-0611	CVE-2016-0611 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)	There are no reported fixed by versions.
VCID-zqfn-69w6-aaae Aliases: CVE-2016-0504	CVE-2016-0504 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-392n-3v4z-aaap
Aliases:
CVE-2016-0605

CVE-2016-0605 mysql: unspecified vulnerability in subcomponent: Server: General (CPU January 2016)

There are no reported fixed by versions.

VCID-5gce-xruf-aaac
Aliases:
CVE-2016-0595

CVE-2016-0595 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)

There are no reported fixed by versions.

VCID-86v3-cu3g-aaab
Aliases:
CVE-2016-0503

CVE-2016-0503 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)

There are no reported fixed by versions.

VCID-bgyf-gb9r-aaaq
Aliases:
CVE-2016-0601

CVE-2016-0601 mysql: unspecified vulnerability in subcomponent: Server: Partition (CPU January 2016)

There are no reported fixed by versions.

VCID-e3aa-2adq-aaar
Aliases:
CVE-2016-0607

CVE-2016-0607 mysql: unspecified vulnerability in subcomponent: Server: Replication (CPU January 2016)

There are no reported fixed by versions.

VCID-e7cu-qe98-aaaa
Aliases:
CVE-2019-2627

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

5.5.64-1ubuntu0.14.04.1
Affected by 9 other vulnerabilities.

VCID-mha5-nydk-aaaj
Aliases:
CVE-2019-2614

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

5.5.64-1ubuntu0.14.04.1
Affected by 9 other vulnerabilities.

VCID-nvhx-8rmr-aaam
Aliases:
CVE-2016-0594

CVE-2016-0594 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)

There are no reported fixed by versions.

VCID-qt9z-7q1n-aaad
Aliases:
CVE-2016-0599

CVE-2016-0599 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)

There are no reported fixed by versions.

VCID-rb4c-gkfx-aaah
Aliases:
CVE-2016-0611

CVE-2016-0611 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)

There are no reported fixed by versions.

VCID-zqfn-69w6-aaae
Aliases:
CVE-2016-0504

CVE-2016-0504 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
VCID-g8rd-8yf4-aaam	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H).	CVE-2018-3174
VCID-gxb6-55hs-aaae	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	CVE-2018-3282
VCID-h5qr-yjht-aaas	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.4 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H).	CVE-2019-2503
VCID-wkhp-pqxv-aaae	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	CVE-2019-2529

Vulnerability

Summary

Aliases

VCID-g8rd-8yf4-aaam

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H).

CVE-2018-3174

VCID-gxb6-55hs-aaae

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVE-2018-3282

VCID-h5qr-yjht-aaas

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.4 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H).

CVE-2019-2503

VCID-wkhp-pqxv-aaae

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

CVE-2019-2529

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5