CVE-2015-2643
First published: Thu Jul 16 2015(Updated: )
Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris and Zettabyte File System (ZFS) | =11.3 | |
| Oracle MySQL | >=5.5.0<=5.5.43 | |
| Oracle MySQL | >=5.6.0<=5.6.24 | |
| MariaDB | >=5.5.0<5.5.44 | |
| MariaDB | >=10.0.0<10.0.20 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =14.10 | |
| Ubuntu | =15.04 | |
| Debian | =7.0 | |
| Debian | =8.0 | |
| SUSE Linux | =13.1 | |
| SUSE Linux | =13.2 | |
| Red Hat Enterprise Linux Desktop | =5.0 | |
| Red Hat Enterprise Linux Desktop | =7.0 | |
| Red Hat Enterprise Linux Server EUS | =7.1 | |
| Red Hat Enterprise Linux Server EUS | =7.2 | |
| Red Hat Enterprise Linux Server EUS | =7.3 | |
| Red Hat Enterprise Linux Server EUS | =7.4 | |
| Red Hat Enterprise Linux Server EUS | =7.5 | |
| Red Hat Enterprise Linux Server EUS | =7.6 | |
| Red Hat Enterprise Linux Server EUS | =7.7 | |
| Red Hat Enterprise Linux Server | =5.0 | |
| Red Hat Enterprise Linux Server | =7.0 | |
| Red Hat Enterprise Linux Server | =7.3 | |
| Red Hat Enterprise Linux Server | =7.4 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.7 | |
| Red Hat Enterprise Linux Server | =7.3 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.7 | |
| Red Hat Enterprise Linux Workstation | =5.0 | |
| Red Hat Enterprise Linux Workstation | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-updates/2015-09/msg00042.html
- http://rhn.redhat.com/errata/RHSA-2015-1628.html
- http://rhn.redhat.com/errata/RHSA-2015-1629.html
- http://rhn.redhat.com/errata/RHSA-2015-1630.html
- http://rhn.redhat.com/errata/RHSA-2015-1646.html
- http://rhn.redhat.com/errata/RHSA-2015-1647.html
- http://rhn.redhat.com/errata/RHSA-2015-1665.html
- http://www.debian.org/security/2015/dsa-3308
- http://www.debian.org/security/2015/dsa-3311
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
- http://www.securityfocus.com/bid/75830
- http://www.securitytracker.com/id/1032911
- http://www.ubuntu.com/usn/USN-2674-1
- https://security.gentoo.org/glsa/201610-06
Frequently Asked Questions
What is the severity of CVE-2015-2643?
CVE-2015-2643 is considered to have a moderate severity level due to its potential impact on availability.
How do I fix CVE-2015-2643?
To mitigate CVE-2015-2643, it is recommended to upgrade Oracle MySQL Server to version 5.5.44 or later and 5.6.25 or later.
Who is affected by CVE-2015-2643?
CVE-2015-2643 affects remote authenticated users of Oracle MySQL Server versions 5.5.43 and earlier and 5.6.24 and earlier.
What types of systems are vulnerable to CVE-2015-2643?
Systems running vulnerable versions of Oracle MySQL Server on platforms such as Oracle Solaris, Ubuntu Linux, Debian Linux, openSUSE, and Red Hat Enterprise are at risk.
What vectors are associated with CVE-2015-2643?
CVE-2015-2643 is linked to unspecified vectors related to the Server: Optimizer component of Oracle MySQL.
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle solaris and zettabyte file system (zfs)
- version/oracle solaris and zettabyte file system (zfs)/11.3
- canonical/oracle mysql
- version/oracle mysql/5.5.0
- version/oracle mysql/5.5.43
- version/oracle mysql/5.6.0
- version/oracle mysql/5.6.24
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.5.0
- version/mariadb/10.0.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/14.10
- version/ubuntu/15.04
- vendor/debian
- canonical/debian
- version/debian/7.0
- version/debian/8.0
- vendor/opensuse
- canonical/suse linux
- version/suse linux/13.1
- version/suse linux/13.2
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/5.0
- version/red hat enterprise linux desktop/7.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/7.1
- version/red hat enterprise linux server eus/7.2
- version/red hat enterprise linux server eus/7.3
- version/red hat enterprise linux server eus/7.4
- version/red hat enterprise linux server eus/7.5
- version/red hat enterprise linux server eus/7.6
- version/red hat enterprise linux server eus/7.7
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/5.0
- version/red hat enterprise linux server/7.0
- version/red hat enterprise linux server/7.3
- version/red hat enterprise linux server/7.4
- version/red hat enterprise linux server/7.6
- version/red hat enterprise linux server/7.7
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/5.0
- version/red hat enterprise linux workstation/7.0