UBUNTU-CVE-2016-0639

CRITICAL9.8

Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Pluggable Auth

Published Apr 20, 2016

Modified 1 months ago

Fix available

Details

Affected Packages

mysql-5.6

Ubuntu 14.04 LTS

Fixed in:

5.6.30-0ubuntu0.14.04.1

mysql-5.7

Ubuntu 16.04 LTS

Fixed in:

5.7.12-0ubuntu1

percona-server-5.6

Ubuntu 16.04 LTS

Affected versions:

5.6.22-rel71.0-0ubuntu25.6.22-rel71.0-0ubuntu45.6.22-rel71.0-0ubuntu4.1

percona-xtradb-cluster-5.6

Ubuntu 16.04 LTS

Affected versions:

5.6.21-25.8-0ubuntu25.6.21-25.8-0ubuntu35.6.21-25.8-0ubuntu3.15.6.21-25.8-0ubuntu3.25.6.34-26.19-0ubuntu0.16.04.15.6.34-26.19-0ubuntu0.16.04.25.6.37-26.21-0ubuntu0.16.04.15.6.37-26.21-0ubuntu0.16.04.2

References

REPORT

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

REPORT

https://ubuntu.com/security/CVE-2016-0639

ADVISORY

https://ubuntu.com/security/notices/USN-2953-1

ADVISORY

https://ubuntu.com/security/notices/USN-2954-1

REPORT

https://www.cve.org/CVERecord?id=CVE-2016-0639

CVSS Analysis