CVE-2016-0655
First published: Thu Apr 21 2016(Updated: )
Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to InnoDB.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/mysql | <5.6.30 | 5.6.30 |
| redhat/mysql | <5.7.12 | 5.7.12 |
| redhat/mariadb | <10.1.14 | 10.1.14 |
| redhat/mariadb | <10.0.25 | 10.0.25 |
| Mariadb Mariadb | >=10.0.0<10.0.25 | |
| Mariadb Mariadb | >=10.1.0<10.1.14 | |
| Debian GNU/Linux | =8.0 | |
| openSUSE | =42.1 | |
| MySQL | >=5.6.0<=5.6.29 | |
| MySQL | >=5.7.0<=5.7.11 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html
- http://rhn.redhat.com/errata/RHSA-2016-0705.html
- http://www.debian.org/security/2016/dsa-3595
- http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- http://www.securityfocus.com/bid/86424
- http://www.securitytracker.com/id/1035606
- http://www.ubuntu.com/usn/USN-2953-1
- http://www.ubuntu.com/usn/USN-2954-1
- https://access.redhat.com/errata/RHSA-2016:1132
- https://mariadb.com/kb/en/mariadb/mariadb-10025-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-10114-release-notes/
- http://www.oracle.com/technetwork/topics/security/cpuapr2016verbose-2881709.html
- https://rhn.redhat.com/errata/RHSA-2016-0705.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1329259
Frequently Asked Questions
What is the severity of CVE-2016-0655?
CVE-2016-0655 has a medium severity level that affects the availability of Oracle MySQL and MariaDB.
How do I fix CVE-2016-0655?
To fix CVE-2016-0655, upgrade to Oracle MySQL version 5.6.30 or 5.7.12, or MariaDB version 10.0.25 or 10.1.14.
What versions of MySQL are affected by CVE-2016-0655?
CVE-2016-0655 affects Oracle MySQL versions 5.6.29 and earlier, and 5.7.11 and earlier.
Which versions of MariaDB are impacted by CVE-2016-0655?
CVE-2016-0655 impacts MariaDB versions 10.0.x before 10.0.25 and 10.1.x before 10.1.14.
What component is vulnerable in CVE-2016-0655?
The vulnerability in CVE-2016-0655 resides in the MySQL Server component related to InnoDB.
- agent/type
- agent/references
- agent/severity
- agent/remedy
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-0655
- agent/software-canonical-lookup
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- package-manager/redhat
- vendor/mariadb
- canonical/mariadb mariadb
- version/mariadb mariadb/10.0.0
- version/mariadb mariadb/10.1.0
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/8.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/42.1
- vendor/oracle
- canonical/mysql
- version/mysql/5.6.0
- version/mysql/5.6.29
- version/mysql/5.7.0
- version/mysql/5.7.11
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/7.0