Download
| Alert*
oval:org.secpod.oval:def:204160
The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix: * It was found that util-linux"s libblkid library did not properly handle Ext ... oval:org.secpod.oval:def:1800285 CVE-2016-3477: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-3521: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-3615: MariaDB 5.5.50, MariaDB 10.1.16 CVE-2016-5440: MariaDB 5.5.50, MariaDB 10.1.16 Reference: CVE-2016-6662: MariaDB 5.5.51, MariaDB 10.1.17. Reference: v3.4 should upgrade to 10.1.17 oval:org.secpod.oval:def:501889 The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix: * It was found that util-linux"s libblkid library did not properly handle Ext ... oval:org.secpod.oval:def:1501658 The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix: * It was found that util-linux"s libblkid library did not properly handle Ext ... oval:org.secpod.oval:def:50590 The parse_dos_extended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service (memory consumption) via a crafted MSDOS partition table with an extended partition boot record at zero offset. oval:org.secpod.oval:def:602571 Several issues have been discovered in the MariaDB database server. The vulnerabilities are addressed by upgrading MariaDB to the new upstream version 10.0.26. Please see the MariaDB 10.0 Release Notes for further details: https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/ oval:org.secpod.oval:def:602564 Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.50 oval:org.secpod.oval:def:1901326 Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR. oval:org.secpod.oval:def:36134 The host is installed with Oracle MySQL 5.5.x through 5.5.49, 5.6.x through 5.6.30 or 5.7.x through 5.7.12 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows remote authenticated ... oval:org.secpod.oval:def:36125 The host is installed with Oracle MySQL 5.5.x through 5.5.49, 5.6.x through 5.6.30 or 5.7.x through 5.7.12 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows remote authenticated ... oval:org.secpod.oval:def:36119 The host is installed with Oracle MySQL 5.5.x through 5.5.49, 5.6.x through 5.6.30 or 5.7.x through 5.7.12 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows local users to ... oval:org.secpod.oval:def:34160 The host is installed with Oracle MySQL 5.5.x through 5.5.47, 5.6.x through 5.6.28 or 5.7.x through 5.7.10 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to DDL. Successful exploitation allows local users to affect a ... oval:org.secpod.oval:def:1901312 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption. oval:org.secpod.oval:def:1900581 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. oval:org.secpod.oval:def:1900582 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect integrity and availability via vectors related to DML. oval:org.secpod.oval:def:34163 The host is installed with Oracle MySQL 5.5.x through 5.5.48, 5.6.x through 5.6.29 or 5.7.x through 5.7.11 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to FTS. Successful exploitation allows local users to affect a ... oval:org.secpod.oval:def:1600443 It was found that the MariaDB client library did not properly check host names against server identities noted in the X.509 certificates when establishing secure connections using TLS/SSL. A man-in-the-middle attacker could possibly use this flaw to impersonate a server to a client. Unspecified vuln ... oval:org.secpod.oval:def:1900502 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to PS. oval:org.secpod.oval:def:602526 Several issues have been discovered in the MariaDB database server. The vulnerabilities are addressed by upgrading MariaDB to the new upstream version 10.0.25. Please see the MariaDB 10.0 Release Notes for further details: https://mariadb.com/kb/en/mariadb/mariadb-10024-release-notes/ https://mariad ... oval:org.secpod.oval:def:34158 The host is installed with Oracle MySQL 5.5.x through 5.5.47, 5.6.x through 5.6.28 or 5.7.x through 5.7.10 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to DML. Successful exploitation allows local users to affect i ... oval:org.secpod.oval:def:36139 The host is installed with Oracle MySQL 5.5.x through 5.5.48, 5.6.x through 5.6.29 or 5.7.x through 5.7.10 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows remote authenti ... oval:org.secpod.oval:def:1600438 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote administrators to affect availability via vectors related to Server: RBR. Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. ... oval:org.secpod.oval:def:1501545 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * This update fixes several vulnerabilities in the MariaDB database server. Information about these flaws c ... oval:org.secpod.oval:def:1900562 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to Security: Privileges. oval:org.secpod.oval:def:703059 mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:703213 mysql-5.7: MySQL database - mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:703057 mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:602477 Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.49 oval:org.secpod.oval:def:1900566 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect confidentiality and availability via vectors related to MyISAM. oval:org.secpod.oval:def:1900525 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DDL. oval:org.secpod.oval:def:501862 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * This update fixes several vulnerabilities in the MariaDB database server. Information about these flaws c ... oval:org.secpod.oval:def:203985 MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb . Security Fix: * This update fixes several vulnerabilities in the MariaDB database server. Information about these flaws c ... oval:org.secpod.oval:def:400641 mariadb was updated to version 10.0.25 to fix 25 security issues. These security issues were fixed: - CVE-2016-0505: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Options . - CVE-2016-0546: Unspecified vulnerability allowed local u ... oval:org.secpod.oval:def:34172 The host is installed with Oracle MySQL 5.5.x through 5.5.47, 5.6.x through 5.6.28 or 5.7.x through 5.7.10 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to PS. Successful exploitation allows local users to affect av ... oval:org.secpod.oval:def:34171 The host is installed with Oracle MySQL 5.5.x through 5.5.48, 5.6.x through 5.6.29 or 5.7.x through 5.7.11 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to PS. Successful exploitation allows local users to affect av ... oval:org.secpod.oval:def:34176 The host is installed with Oracle MySQL 5.5.x through 5.5.48, 5.6.x through 5.6.29 or 5.7.x through 5.7.11 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to Security: Privileges. Successful exploitation allows allows ... oval:org.secpod.oval:def:1900578 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS. oval:org.secpod.oval:def:34177 The host is installed with Oracle MySQL 5.5.x through 5.5.47, 5.6.x through 5.6.28 or 5.7.x through 5.7.10 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle vectors related to MyISAM. Successful exploitation allows local users to affec ... oval:org.secpod.oval:def:400733 mariadb was updated to version 10.0.25 to fix 25 security issues. These security issues were fixed: - CVE-2016-0505: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Options . - CVE-2016-0546: Unspecified vulnerability allowed local u ... oval:org.secpod.oval:def:51606 mysql-5.7: MySQL database - mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:1600404 A double-free flaw was found in the way OpenSSL parsed certain malformed DSA private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash. The ssl_verify_server_cert function in sql-co ... oval:org.secpod.oval:def:110547 MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. oval:org.secpod.oval:def:110496 MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. |