[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2016-6662 -- percona-xtradb-cluster-common-5.5, percona-server-5.6

Deprecated
ID: oval:org.secpod.oval:def:1900561Date: (C)2019-03-01   (M)2023-12-20
Class: VULNERABILITYFamily: unix




Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0,and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE:the affected MySQL version information is from Oracle"s Octo ber 2016 CPU.Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15.

Platform:
Ubuntu 16.04
Ubuntu 14.04
Product:
percona-xtradb-cluster-common-5.5
percona-server-5.6
Reference:
CVE-2016-6662
CVE    1
CVE-2016-6662
CPE    4
cpe:/o:ubuntu:ubuntu_linux:14.04
cpe:/a:percona:percona_server
cpe:/a:percona:percona-xtradb-cluster-common-5.5
cpe:/o:ubuntu:ubuntu_linux:16.04
...

© SecPod Technologies