Download
| Alert*
oval:org.secpod.oval:def:505040
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The following packages have been upgraded to a newer upstream version: mysql55-mysql . Security Fix: * It was discovered that the MySQL logging functionality allowed w ... oval:org.secpod.oval:def:204132 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. ... oval:org.secpod.oval:def:504996 MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The following packages have been upgraded to a newer upstream version: rh-mariadb100-mariadb . Security Fix: * It was discovered that the MariaDB logging functionality al ... oval:org.secpod.oval:def:89045147 An update that fixes three vulnerabilities is now available. Description: This mysql version update to 5.5.53 fixes the following issues: - CVE-2016-6662: Unspecified vulnerability in subcomponent Logging (bsc#1005580) - CVE-2016-7440: Unspecified vulnerability in subcomponent Encryption (bsc#10055 ... oval:org.secpod.oval:def:204088 MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon and many client programs and libraries. Security Fix: * It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a databa ... oval:org.secpod.oval:def:2101512 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple proto ... oval:org.secpod.oval:def:504888 MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb55-mariadb . Security Fix: * It was discovered that the MariaDB logging functionality allowe ... oval:org.secpod.oval:def:504929 MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The following packages have been upgraded to a newer upstream version: rh-mysql56-mysql . Security Fix: * It was discovered that the MySQL logging functionality allowe ... oval:org.secpod.oval:def:111394 MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs an ... oval:org.secpod.oval:def:1800285 CVE-2016-3477: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-3521: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-3615: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-5440: MariaDB 5.5.50, MariaDB 10.1.16 Reference: CVE-2016-6662: MariaDB 5.5.51, MariaDB 10.1.17. Reference: v3.4 should upgrade to 10.1.17 oval:org.secpod.oval:def:505070 MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The following packages have been upgraded to a newer upstream version: rh-mariadb101-mariadb . Security Fix: * It was discovered that the MariaDB logging functionality al ... oval:org.secpod.oval:def:111383 MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. oval:org.secpod.oval:def:89045308 This mysql update to verson 5.5.52 fixes the following issues: Security issues fixed: - CVE-2016-3477: Fixed unspecified vulnerability in subcomponent parser . - CVE-2016-3521: Fixed unspecified vulnerability in subcomponent types . - CVE-2016-3615: Fixed unspecified vulnerability in subcomponent dm ... oval:org.secpod.oval:def:501906 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. ... oval:org.secpod.oval:def:1501640 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. ... oval:org.secpod.oval:def:501968 MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon and many client programs and libraries. Security Fix: * It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a databa ... oval:org.secpod.oval:def:1600506 It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server. A race ... oval:org.secpod.oval:def:1501746 MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon and many client programs and libraries. Security Fix: * It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a databa ... oval:org.secpod.oval:def:602613 Dawid Golunski discovered that the mysqld_safe wrapper provided by the MySQL database server insufficiently restricted the load path for custom malloc implementations, which could result in privilege escalation. The vulnerability was addressed by upgrading MySQL to the new upstream version 5.5.52, w ... oval:org.secpod.oval:def:37239 The host is installed with mariadb on Fedora 23 or Fedora 24 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle MySQL logging functions. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:703261 mysql-5.7: MySQL database - mysql-5.5: MySQL database MySQL could be made to run programs as an administrator. oval:org.secpod.oval:def:37184 The host is installed with MySQL 5.1.73 and earlier on Centos 6, mariadb 5.5.50 and earlier on Centos 7 or MySQL 5.0.95 and earlier on Centos 5 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle MySQL logging functions. Successf ... oval:org.secpod.oval:def:51628 mysql-5.7: MySQL database - mysql-5.5: MySQL database MySQL could be made to run programs as an administrator. oval:org.secpod.oval:def:1600461 It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server. oval:org.secpod.oval:def:1900561 Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0,and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypas ... oval:org.secpod.oval:def:37092 The host is installed with MySQL 5.1.73 and earlier on Red Hat Enterprise Linux 6, mariadb 5.5.50 and earlier on Red Hat Enterprise Linux 7 or mysql55-mysql 5.5.40-2.el5 and earlier and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly ha ... oval:org.secpod.oval:def:37775 The host is installed with Oracle MySQL Server through 5.5.52, 5.6.33 or 5.7.15 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Server: Logging. Successful exploitation allows attackers to affect Confidentiality, Integrity ... oval:org.secpod.oval:def:37213 The host is installed with MySQL 5.1.73 and earlier on OEL 6, mariadb 5.5.50 and earlier on OEL 7 or MySQL 5.0.95 and earlier on OEL 5 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle MySQL logging functions. Successful exploi ... |