Search for packages
| purl | pkg:deb/ubuntu/mysql-5.6@5.6.28-1ubuntu2 |
| Next non-vulnerable version | 5.6.33-0ubuntu0.14.04.1 |
| Latest non-vulnerable version | 5.6.33-0ubuntu0.14.04.1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-115q-hx34-aaae
Aliases: CVE-2016-5629 |
Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: Federated. |
Affected by 0 other vulnerabilities. |
|
VCID-1g3k-dp9a-aaac
Aliases: CVE-2016-0639 |
CVE-2016-0639 mysql: unspecified vulnerability in subcomponent: Server: Pluggable Authentication (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-1xd8-ezzx-aaaq
Aliases: CVE-2016-0655 |
CVE-2016-0655 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-3e38-h7wr-aaaf
Aliases: CVE-2016-3452 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption. |
Affected by 20 other vulnerabilities. |
|
VCID-4gzx-3qqj-aaag
Aliases: CVE-2016-0643 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. |
Affected by 20 other vulnerabilities. |
|
VCID-4kdy-frzu-aaaf
Aliases: CVE-2016-3459 |
CVE-2016-3459 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU July 2016) |
Affected by 11 other vulnerabilities. |
|
VCID-5kvb-ge59-aaac
Aliases: CVE-2016-0648 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. |
Affected by 20 other vulnerabilities. |
|
VCID-5up4-srpq-aaab
Aliases: CVE-2016-3492 |
Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. |
Affected by 0 other vulnerabilities. |
|
VCID-6324-mp8e-aaaj
Aliases: CVE-2016-0642 |
CVE-2016-0642 mysql: unspecified vulnerability in subcomponent: Server: Federated (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-6v4x-ejj6-aaak
Aliases: CVE-2016-5626 |
Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS. |
Affected by 0 other vulnerabilities. |
|
VCID-7jv3-eumj-aaab
Aliases: CVE-2016-5612 |
Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. |
Affected by 0 other vulnerabilities. |
|
VCID-88ez-43je-aaam
Aliases: CVE-2016-5444 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection. |
Affected by 20 other vulnerabilities. |
|
VCID-8gxw-3v5z-aaam
Aliases: CVE-2016-5439 |
CVE-2016-5439 mysql: unspecified vulnerability in subcomponent: Server: Privileges (CPU July 2016) |
Affected by 11 other vulnerabilities. |
|
VCID-8m2v-yb2a-aaac
Aliases: CVE-2016-3501 |
CVE-2016-3501 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU July 2016) |
Affected by 11 other vulnerabilities. |
|
VCID-9jhu-6uu5-aaaf
Aliases: CVE-2016-0650 |
CVE-2016-0650 mysql: unspecified vulnerability in subcomponent: Server: Replication (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-bzx9-r4xf-aaad
Aliases: CVE-2016-0641 |
CVE-2016-0641 mysql: unspecified vulnerability in subcomponent: Server: MyISAM (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-c24k-43p9-aaac
Aliases: CVE-2016-0649 |
CVE-2016-0649 mysql: unspecified vulnerability in subcomponent: Server: PS (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-cbc5-ydxr-aaaq
Aliases: CVE-2016-0668 |
CVE-2016-0668 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-cqk4-vjy3-aaan
Aliases: CVE-2016-5440 |
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR. |
Affected by 11 other vulnerabilities. |
|
VCID-fhyr-8wrf-aaaq
Aliases: CVE-2016-3521 |
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types. |
Affected by 11 other vulnerabilities. |
|
VCID-g27n-n8ct-aaar
Aliases: CVE-2016-0661 |
CVE-2016-0661 mysql: unspecified vulnerability in subcomponent: Server: Options (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-ge1s-u365-aaac
Aliases: CVE-2016-0644 |
CVE-2016-0644 mysql: unspecified vulnerability in subcomponent: Server: DDL (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-gqqx-zubw-aaap
Aliases: CVE-2016-0666 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to Security: Privileges. |
Affected by 20 other vulnerabilities. |
|
VCID-juvh-e8p9-aaad
Aliases: CVE-2016-8283 |
Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types. |
Affected by 0 other vulnerabilities. |
|
VCID-k18m-23m7-aaaa
Aliases: CVE-2016-6662 |
Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15. |
Affected by 0 other vulnerabilities. |
|
VCID-mese-aqvd-aaak
Aliases: CVE-2016-3615 |
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML. |
Affected by 11 other vulnerabilities. |
|
VCID-mw7a-9n6d-aaap
Aliases: CVE-2016-6663 |
Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17 allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table. |
Affected by 0 other vulnerabilities. |
|
VCID-n2xx-ut1u-aaam
Aliases: CVE-2016-3477 |
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser. |
Affected by 11 other vulnerabilities. |
|
VCID-qp7n-z6ea-aaab
Aliases: CVE-2017-3302 |
Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3. |
Affected by 0 other vulnerabilities. |
|
VCID-rm4j-187u-aaan
Aliases: CVE-2016-3486 |
CVE-2016-3486 mysql: unspecified vulnerability in subcomponent: Server: FTS (CPU July 2016) |
Affected by 11 other vulnerabilities. |
|
VCID-rqsz-7kxp-aaar
Aliases: CVE-2016-3614 |
CVE-2016-3614 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU July 2016) |
Affected by 11 other vulnerabilities. |
|
VCID-sk5m-bkpv-aaam
Aliases: CVE-2016-8288 |
Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin. |
Affected by 0 other vulnerabilities. |
|
VCID-u1mf-cx9t-aaas
Aliases: CVE-2016-0665 |
CVE-2016-0665 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-vjk6-9r8q-aaac
Aliases: CVE-2016-2047 |
CVE-2016-2047 mysql: ssl-validate-cert incorrect hostname check |
Affected by 20 other vulnerabilities. |
|
VCID-vmp9-x7q1-aaah
Aliases: CVE-2016-3471 |
CVE-2016-3471 mysql: unspecified vulnerability in subcomponent: Server: Option (CPU July 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-wm7g-13x4-aaap
Aliases: CVE-2016-0646 |
CVE-2016-0646 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016) |
Affected by 20 other vulnerabilities. |
|
VCID-www5-jeqf-aaak
Aliases: CVE-2016-0647 |
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS. |
Affected by 20 other vulnerabilities. |
|
VCID-xfkk-wjt1-aaab
Aliases: CVE-2016-8284 |
Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows local users to affect availability via vectors related to Server: Replication. |
Affected by 0 other vulnerabilities. |
|
VCID-y32y-72qf-aaad
Aliases: CVE-2016-6664 |
mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17, when using file-based logging, allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files. |
Affected by 0 other vulnerabilities. |
|
VCID-z5p4-5dbc-aaad
Aliases: CVE-2016-0640 |
CVE-2016-0640 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016) |
Affected by 20 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|