CVE-2016-8284

Upstream information

CVE-2016-8284 at MITRE

Description

Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows local users to affect availability via vectors related to Server: Replication.

---

SUSE information

Overall state of this security issue: Running

This issue is currently rated as having low severity.

CVSS v2 Scores

	National Vulnerability Database
Base Score	1.2
Vector	AV:L/AC:H/Au:N/C:N/I:N/A:P
Access Vector	Local
Access Complexity	High
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Partial

CVSS v3 Scores

	National Vulnerability Database
Base Score	1.8
Vector	CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:L
Access Vector	Local
Access Complexity	High
Privileges Required	High
User Interaction	Required
Scope	Unchanged
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Low
CVSSv3 Version	3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N

SUSE Bugzilla entries: 1005583 [RESOLVED / INVALID], 1008117 [RESOLVED / INVALID], 1008133 [RESOLVED / INVALID], 1008141 [RESOLVED / INVALID], 1008150 [RESOLVED / INVALID], 1008151 [RESOLVED / INVALID], 1008152 [RESOLVED / INVALID], 1011266 [RESOLVED / INVALID], 1011267 [RESOLVED / INVALID]

SUSE Security Advisories:

• openSUSE-SU-2016:2769-1, published Thu, 10 Nov 2016 17:08:28 +0100 (CET)
• openSUSE-SU-2016:2788-1, published Sat, 12 Nov 2016 15:04:50 +0100 (CET)

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Leap 42.1	libmysql56client18 >= 5.6.34-19.2 libmysql56client18-32bit >= 5.6.34-19.2 libmysql56client18-debuginfo >= 5.6.34-19.2 libmysql56client18-debuginfo-32bit >= 5.6.34-19.2 libmysql56client_r18 >= 5.6.34-19.2 libmysql56client_r18-32bit >= 5.6.34-19.2 mysql-community-server >= 5.6.34-19.2 mysql-community-server-bench >= 5.6.34-19.2 mysql-community-server-bench-debuginfo >= 5.6.34-19.2 mysql-community-server-client >= 5.6.34-19.2 mysql-community-server-client-debuginfo >= 5.6.34-19.2 mysql-community-server-debuginfo >= 5.6.34-19.2 mysql-community-server-debugsource >= 5.6.34-19.2 mysql-community-server-errormessages >= 5.6.34-19.2 mysql-community-server-test >= 5.6.34-19.2 mysql-community-server-test-debuginfo >= 5.6.34-19.2 mysql-community-server-tools >= 5.6.34-19.2 mysql-community-server-tools-debuginfo >= 5.6.34-19.2	Patchnames: openSUSE-2016-1283
openSUSE Tumbleweed	libmysql56client18 >= 5.6.34-1.1 libmysql56client18-32bit >= 5.6.34-1.1 libmysql56client_r18 >= 5.6.34-1.1 libmysql56client_r18-32bit >= 5.6.34-1.1 mysql-community-server >= 5.6.34-1.1 mysql-community-server-bench >= 5.6.34-1.1 mysql-community-server-client >= 5.6.34-1.1 mysql-community-server-errormessages >= 5.6.34-1.1 mysql-community-server-test >= 5.6.34-1.1 mysql-community-server-tools >= 5.6.34-1.1	Patchnames: openSUSE Tumbleweed GA libmysql56client18-32bit