CVE-2016-0610
First published: Thu Jan 21 2016(Updated: )
Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/mysql | <5.6.28 | 5.6.28 |
| redhat/mariadb | <10.1.9 | 10.1.9 |
| redhat/mariadb | <10.0.22 | 10.0.22 |
| MySQL | <=5.6.27 | |
| Debian | =8.0 | |
| Ariadne CMS | <=5.5.46 | |
| Ariadne CMS | =10.0.0 | |
| Ariadne CMS | =10.0.1 | |
| Ariadne CMS | =10.0.2 | |
| Ariadne CMS | =10.0.3 | |
| Ariadne CMS | =10.0.4 | |
| Ariadne CMS | =10.0.5 | |
| Ariadne CMS | =10.0.6 | |
| Ariadne CMS | =10.0.7 | |
| Ariadne CMS | =10.0.8 | |
| Ariadne CMS | =10.0.9 | |
| Ariadne CMS | =10.0.10 | |
| Ariadne CMS | =10.0.11 | |
| Ariadne CMS | =10.0.12 | |
| Ariadne CMS | =10.0.13 | |
| Ariadne CMS | =10.0.14 | |
| Ariadne CMS | =10.0.15 | |
| Ariadne CMS | =10.0.16 | |
| Ariadne CMS | =10.0.17 | |
| Ariadne CMS | =10.0.18 | |
| Ariadne CMS | =10.0.19 | |
| Ariadne CMS | =10.0.20 | |
| Ariadne CMS | =10.0.21 | |
| Ariadne CMS | =10.1.0 | |
| Ariadne CMS | =10.1.1 | |
| Ariadne CMS | =10.1.2 | |
| Ariadne CMS | =10.1.3 | |
| Ariadne CMS | =10.1.4 | |
| Ariadne CMS | =10.1.5 | |
| Ariadne CMS | =10.1.6 | |
| Ariadne CMS | =10.1.7 | |
| Ariadne CMS | =10.1.8 | |
| openSUSE | =42.1 | |
| openSUSE | =13.2 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =7.0 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =15.04 | |
| Ubuntu | =15.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html
- http://rhn.redhat.com/errata/RHSA-2016-0705.html
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
- http://www.securityfocus.com/bid/81198
- http://www.securitytracker.com/id/1034708
- http://www.ubuntu.com/usn/USN-2881-1
- https://access.redhat.com/errata/RHSA-2016:1132
- https://mariadb.com/kb/en/mariadb/mariadb-10022-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-1019-release-notes/
- http://www.oracle.com/technetwork/topics/security/cpujan2016verbose-2367956.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1301518
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1301517
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1301519
- https://rhn.redhat.com/errata/RHSA-2016-0705.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1301508
Frequently Asked Questions
What is the severity of CVE-2016-0610?
CVE-2016-0610 is rated with a medium severity; however, the specific impact is not clearly defined.
How do I fix CVE-2016-0610?
To resolve CVE-2016-0610, upgrade to MySQL version 5.6.28 or MariaDB versions 10.0.22 and 10.1.9 or later.
Which software is affected by CVE-2016-0610?
CVE-2016-0610 affects Oracle MySQL versions 5.6.27 and earlier, and MariaDB versions prior to 10.0.22 and 10.1.x prior to 10.1.9.
What components of MySQL are involved in CVE-2016-0610?
The vulnerability is related specifically to the InnoDB component within the MySQL Server.
Can CVE-2016-0610 be exploited remotely?
Yes, CVE-2016-0610 allows remote authenticated users to potentially affect system availability.
- agent/type
- agent/remedy
- agent/severity
- agent/references
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-0610
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/oracle
- canonical/mysql
- version/mysql/5.6.27
- vendor/debian
- canonical/debian
- version/debian/8.0
- vendor/mariadb
- canonical/ariadne cms
- version/ariadne cms/5.5.46
- version/ariadne cms/10.0.0
- version/ariadne cms/10.0.1
- version/ariadne cms/10.0.2
- version/ariadne cms/10.0.3
- version/ariadne cms/10.0.4
- version/ariadne cms/10.0.5
- version/ariadne cms/10.0.6
- version/ariadne cms/10.0.7
- version/ariadne cms/10.0.8
- version/ariadne cms/10.0.9
- version/ariadne cms/10.0.10
- version/ariadne cms/10.0.11
- version/ariadne cms/10.0.12
- version/ariadne cms/10.0.13
- version/ariadne cms/10.0.14
- version/ariadne cms/10.0.15
- version/ariadne cms/10.0.16
- version/ariadne cms/10.0.17
- version/ariadne cms/10.0.18
- version/ariadne cms/10.0.19
- version/ariadne cms/10.0.20
- version/ariadne cms/10.0.21
- version/ariadne cms/10.1.0
- version/ariadne cms/10.1.1
- version/ariadne cms/10.1.2
- version/ariadne cms/10.1.3
- version/ariadne cms/10.1.4
- version/ariadne cms/10.1.5
- version/ariadne cms/10.1.6
- version/ariadne cms/10.1.7
- version/ariadne cms/10.1.8
- vendor/opensuse
- canonical/opensuse
- version/opensuse/42.1
- version/opensuse/13.2
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/15.04
- version/ubuntu/15.10