ID CVE-2015-4864
Summary Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.
References
Vulnerable Configurations
  • Oracle Solaris 11.3
    cpe:2.3:o:oracle:solaris:11.3
  • Oracle MySQL 5.5.45
    cpe:2.3:a:oracle:mysql:5.5.45
  • Oracle MySQL 5.6.26
    cpe:2.3:a:oracle:mysql:5.6.26
CVSS
Base: 3.5 (as of 02-11-2016 - 14:05)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
redhat via4
advisories
bugzilla
id 1244781
title CVE-2015-4757 mysql: unspecified vulnerability related to Server:Optimizer (CPU July 2015)
oval
AND
  • OR
    • comment Red Hat Enterprise Linux 7 Client is installed
      oval oval:com.redhat.rhsa:tst:20140675001
    • comment Red Hat Enterprise Linux 7 Server is installed
      oval oval:com.redhat.rhsa:tst:20140675002
    • comment Red Hat Enterprise Linux 7 Workstation is installed
      oval oval:com.redhat.rhsa:tst:20140675003
    • comment Red Hat Enterprise Linux 7 ComputeNode is installed
      oval oval:com.redhat.rhsa:tst:20140675004
  • OR
    • AND
      • comment mariadb is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665007
      • comment mariadb is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702006
    • AND
      • comment mariadb-bench is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665019
      • comment mariadb-bench is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702012
    • AND
      • comment mariadb-devel is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665013
      • comment mariadb-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702018
    • AND
      • comment mariadb-embedded is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665009
      • comment mariadb-embedded is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702014
    • AND
      • comment mariadb-embedded-devel is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665015
      • comment mariadb-embedded-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702010
    • AND
      • comment mariadb-libs is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665017
      • comment mariadb-libs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702008
    • AND
      • comment mariadb-server is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665011
      • comment mariadb-server is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702020
    • AND
      • comment mariadb-test is earlier than 1:5.5.44-1.el7_1
        oval oval:com.redhat.rhsa:tst:20151665005
      • comment mariadb-test is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20140702016
rhsa
id RHSA-2015:1665
released 2015-08-24
severity Moderate
title RHSA-2015:1665: mariadb security update (Moderate)
rpms
  • mysql55-mysql-0:5.5.45-1.el5
  • mysql55-mysql-bench-0:5.5.45-1.el5
  • mysql55-mysql-devel-0:5.5.45-1.el5
  • mysql55-mysql-libs-0:5.5.45-1.el5
  • mysql55-mysql-server-0:5.5.45-1.el5
  • mysql55-mysql-test-0:5.5.45-1.el5
  • mariadb-1:5.5.44-1.el7_1
  • mariadb-bench-1:5.5.44-1.el7_1
  • mariadb-devel-1:5.5.44-1.el7_1
  • mariadb-embedded-1:5.5.44-1.el7_1
  • mariadb-embedded-devel-1:5.5.44-1.el7_1
  • mariadb-libs-1:5.5.44-1.el7_1
  • mariadb-server-1:5.5.44-1.el7_1
  • mariadb-test-1:5.5.44-1.el7_1
refmap via4
bid 77187
confirm
sectrack 1033894
ubuntu USN-2781-1
Last major update 23-12-2016 - 21:59
Published 21-10-2015 - 19:59
Back to Top