Search for packages
Package details: pkg:deb/ubuntu/percona-xtradb-cluster-5.6@5.6.34-26.19-0ubuntu0.16.04.1
purl pkg:deb/ubuntu/percona-xtradb-cluster-5.6@5.6.34-26.19-0ubuntu0.16.04.1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (84)
Vulnerability Summary Aliases
VCID-115q-hx34-aaae Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: Federated. CVE-2016-5629
VCID-17ru-2rwj-aaag CVE-2015-4792 mysql: unspecified vulnerability related to Server:Partition (CPU October 2015) CVE-2015-4792
VCID-1eer-xk66-aaap CVE-2016-0505 mysql: unspecified vulnerability in subcomponent: Server: Options (CPU January 2016) CVE-2016-0505
VCID-1hty-da2c-aaab CVE-2015-4910 mysql: unspecified vulnerability related to Server:Memcached (CPU October 2015) CVE-2015-4910
VCID-1xd8-ezzx-aaaq CVE-2016-0655 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016) CVE-2016-0655
VCID-2kpa-q8qy-aaah CVE-2015-4819 mysql: unspecified vulnerability related to Client programs (CPU October 2015) CVE-2015-4819
VCID-2pwf-ewyj-aaas CVE-2015-4815 mysql: unspecified vulnerability related to Server:DDL (CPU October 2015) CVE-2015-4815
VCID-392n-3v4z-aaap CVE-2016-0605 mysql: unspecified vulnerability in subcomponent: Server: General (CPU January 2016) CVE-2016-0605
VCID-3e38-h7wr-aaaf Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption. CVE-2016-3452
VCID-3n74-bgyd-aaan CVE-2015-4862 mysql: unspecified vulnerability related to Server:DML (CPU October 2015) CVE-2015-4862
VCID-4gzx-3qqj-aaag Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. CVE-2016-0643
VCID-4kdy-frzu-aaaf CVE-2016-3459 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU July 2016) CVE-2016-3459
VCID-4m1s-g9g2-aaag CVE-2015-4836 mysql: unspecified vulnerability related to Server:SP (CPU October 2015) CVE-2015-4836
VCID-4t5p-ssrk-aaag CVE-2016-0610 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU January 2016) CVE-2016-0610
VCID-5gce-xruf-aaac CVE-2016-0595 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0595
VCID-5kvb-ge59-aaac Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. CVE-2016-0648
VCID-5kzw-z6wa-aaaq CVE-2016-0596 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0596
VCID-5nyu-kqa8-aaap CVE-2015-4766 mysql: unspecified vulnerability related to Server:Security:Firewall (CPU October 2015) CVE-2015-4766
VCID-5up4-srpq-aaab Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. CVE-2016-3492
VCID-6324-mp8e-aaaj CVE-2016-0642 mysql: unspecified vulnerability in subcomponent: Server: Federated (CPU April 2016) CVE-2016-0642
VCID-63z8-ft1d-aaam CVE-2015-4870 mysql: unspecified vulnerability related to Server:Parser (CPU October 2015) CVE-2015-4870
VCID-6v4x-ejj6-aaak Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS. CVE-2016-5626
VCID-7jv3-eumj-aaab Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-5612
VCID-7xtp-5ds1-aaaj CVE-2015-4866 mysql: unspecified vulnerability related to Server:InnoDB (CPU October 2015) CVE-2015-4866
VCID-86v3-cu3g-aaab CVE-2016-0503 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0503
VCID-88ez-43je-aaam Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Connection. CVE-2016-5444
VCID-8gxw-3v5z-aaam CVE-2016-5439 mysql: unspecified vulnerability in subcomponent: Server: Privileges (CPU July 2016) CVE-2016-5439
VCID-8m2v-yb2a-aaac CVE-2016-3501 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU July 2016) CVE-2016-3501
VCID-8zfx-xyk4-aaaa CVE-2016-0598 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0598
VCID-9jhu-6uu5-aaaf CVE-2016-0650 mysql: unspecified vulnerability in subcomponent: Server: Replication (CPU April 2016) CVE-2016-0650
VCID-ah4j-2w2h-aaaa CVE-2015-4800 mysql: unspecified vulnerability related to Server:Optimizer (CPU October 2015) CVE-2015-4800
VCID-b6m3-1z67-aaam CVE-2016-0606 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU January 2016) CVE-2016-0606
VCID-b9fk-nfy3-aaar CVE-2016-0616 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016) CVE-2016-0616
VCID-bj4k-d9c6-aaab Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. CVE-2016-5630
VCID-bra4-3sr3-aaac Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to Server: InnoDB. CVE-2016-5627
VCID-bzx9-r4xf-aaad CVE-2016-0641 mysql: unspecified vulnerability in subcomponent: Server: MyISAM (CPU April 2016) CVE-2016-0641
VCID-c24k-43p9-aaac CVE-2016-0649 mysql: unspecified vulnerability in subcomponent: Server: PS (CPU April 2016) CVE-2016-0649
VCID-cbc5-ydxr-aaaq CVE-2016-0668 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016) CVE-2016-0668
VCID-cd67-738n-aaab Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption. CVE-2016-5584
VCID-cqk4-vjy3-aaan Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR. CVE-2016-5440
VCID-d4tb-7f72-aaar Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-5609
VCID-dxaq-qnzc-aaar CVE-2015-4879 mysql: unspecified vulnerability related to Server:DML (CPU October 2015) CVE-2015-4879
VCID-e3aa-2adq-aaar CVE-2016-0607 mysql: unspecified vulnerability in subcomponent: Server: Replication (CPU January 2016) CVE-2016-0607
VCID-f4ah-8mee-aaaf CVE-2015-4913 mysql: unspecified vulnerability related to Server:DML (CPU October 2015) CVE-2015-4913
VCID-fg4p-hf8k-aaag CVE-2016-0608 mysql: unspecified vulnerability in subcomponent: Server: UDF (CPU January 2016) CVE-2016-0608
VCID-fhyr-8wrf-aaaq Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types. CVE-2016-3521
VCID-g27n-n8ct-aaar CVE-2016-0661 mysql: unspecified vulnerability in subcomponent: Server: Options (CPU April 2016) CVE-2016-0661
VCID-g9fk-hv1m-aaan CVE-2015-4895 mysql: unspecified vulnerability related to Server:InnoDB (CPU October 2015) CVE-2015-4895
VCID-ge1s-u365-aaac CVE-2016-0644 mysql: unspecified vulnerability in subcomponent: Server: DDL (CPU April 2016) CVE-2016-0644
VCID-gqqx-zubw-aaap Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to Security: Privileges. CVE-2016-0666
VCID-j3xt-jgfu-aaaq CVE-2015-4833 mysql: unspecified vulnerability related to Server:Partition (CPU October 2015) CVE-2015-4833
VCID-jat4-zxyp-aaah CVE-2016-0546 mysql: unspecified vulnerability in subcomponent: Client (CPU January 2016) CVE-2016-0546
VCID-juvh-e8p9-aaad Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types. CVE-2016-8283
VCID-k18m-23m7-aaaa Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15. CVE-2016-6662
VCID-kdd2-tjef-aaak CVE-2015-4905 mysql: unspecified vulnerability related to Server:DML (CPU October 2015) CVE-2015-4905
VCID-kqkp-4d6b-aaaq Unspecified vulnerability in Oracle MySQL 5.6.32 and earlier and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. CVE-2016-5507
VCID-mese-aqvd-aaak Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML. CVE-2016-3615
VCID-mw7a-9n6d-aaap Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17 allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table. CVE-2016-6663
VCID-n2xx-ut1u-aaam Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser. CVE-2016-3477
VCID-n6vg-vdhx-aaaa CVE-2015-4858 mysql: unspecified vulnerability related to Server:DML (CPU October 2015) CVE-2015-4858
VCID-nvhx-8rmr-aaam CVE-2016-0594 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0594
VCID-p1j4-k3cm-aaam CVE-2016-0609 mysql: unspecified vulnerability in subcomponent: Server: Security: Privileges (CPU January 2016) CVE-2016-0609
VCID-rb4c-gkfx-aaah CVE-2016-0611 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016) CVE-2016-0611
VCID-rm4j-187u-aaan CVE-2016-3486 mysql: unspecified vulnerability in subcomponent: Server: FTS (CPU July 2016) CVE-2016-3486
VCID-rqsz-7kxp-aaar CVE-2016-3614 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU July 2016) CVE-2016-3614
VCID-rwy8-7x2w-aaar CVE-2015-4864 mysql: unspecified vulnerability related to Server:Security:Privileges (CPU October 2015) CVE-2015-4864
VCID-rx3p-j9pr-aaak CVE-2015-4830 mysql: unspecified vulnerability related to Server:Security:Privileges (CPU October 2015) CVE-2015-4830
VCID-sk5m-bkpv-aaam Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin. CVE-2016-8288
VCID-syvk-1ewz-aaan CVE-2015-4826 mysql: unspecified vulnerability related to Server:Types (CPU October 2015) CVE-2015-4826
VCID-u1mf-cx9t-aaas CVE-2016-0665 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU April 2016) CVE-2016-0665
VCID-ud1j-t8cd-aaac CVE-2016-0597 mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016) CVE-2016-0597
VCID-uzuq-4m1a-aaaj wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote attackers to obtain private RSA keys by capturing TLS handshakes, aka a Lenstra attack. CVE-2015-7744
VCID-vjk6-9r8q-aaac CVE-2016-2047 mysql: ssl-validate-cert incorrect hostname check CVE-2016-2047
VCID-vmp9-x7q1-aaah CVE-2016-3471 mysql: unspecified vulnerability in subcomponent: Server: Option (CPU July 2016) CVE-2016-3471
VCID-wm7g-13x4-aaap CVE-2016-0646 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016) CVE-2016-0646
VCID-wnet-7ktr-aaap CVE-2015-4890 mysql: unspecified vulnerability related to Server:Replication (CPU October 2015) CVE-2015-4890
VCID-wteq-ve4a-aaam CVE-2015-4802 mysql: unspecified vulnerability related to Server:Partition (CPU October 2015) CVE-2015-4802
VCID-www5-jeqf-aaak Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS. CVE-2016-0647
VCID-x8db-y9mb-aaad CVE-2015-4861 mysql: unspecified vulnerability related to Server:InnoDB (CPU October 2015) CVE-2015-4861
VCID-xfkk-wjt1-aaab Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows local users to affect availability via vectors related to Server: Replication. CVE-2016-8284
VCID-z5p4-5dbc-aaad CVE-2016-0640 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016) CVE-2016-0640
VCID-z7ge-q7w1-aaaa CVE-2016-0600 mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU January 2016) CVE-2016-0600
VCID-zeaa-ppnm-aaah CVE-2015-4904 mysql: unspecified vulnerability related to libmysqld (CPU October 2015) CVE-2015-4904
VCID-zqfn-69w6-aaae CVE-2016-0504 mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016) CVE-2016-0504

Date Actor Action Vulnerability Source VulnerableCode Version