CVE-2016-0668
First published: Thu Apr 21 2016(Updated: )
Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0.x before 10.0.24 and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to InnoDB.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/mysql | <5.6.28 | 5.6.28 |
| redhat/mysql | <5.7.11 | 5.7.11 |
| redhat/mariadb | <10.1.12 | 10.1.12 |
| redhat/mariadb | <10.0.24 | 10.0.24 |
| Oracle MySQL | >=5.6.0<=5.6.28 | |
| Oracle MySQL | >=5.7.0<=5.7.10 | |
| MariaDB Common | >=10.0.0<10.0.24 | |
| MariaDB Common | >=10.1.0<=10.1.12 | |
| Debian | =8.0 | |
| SUSE Linux | =42.1 | |
| SUSE Linux | =13.2 | |
| SUSE Linux Enterprise Desktop | =12 | |
| SUSE Linux Enterprise Desktop | =12-sp1 | |
| SUSE Linux Enterprise Server | =12 | |
| SUSE Linux Enterprise Server | =12-sp1 | |
| SUSE Linux Enterprise Software Development Kit | =12 | |
| SUSE Linux Enterprise Software Development Kit | =12-sp1 | |
| SUSE Linux Workstation Extension | =12 | |
| SUSE Linux Workstation Extension | =12-sp1 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =15.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html
- http://rhn.redhat.com/errata/RHSA-2016-0705.html
- http://www.debian.org/security/2016/dsa-3595
- http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- http://www.securityfocus.com/bid/86467
- http://www.securitytracker.com/id/1035606
- http://www.ubuntu.com/usn/USN-2953-1
- https://access.redhat.com/errata/RHSA-2016:1132
- https://mariadb.com/kb/en/mariadb/mariadb-10024-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-10112-release-notes/
- http://www.oracle.com/technetwork/topics/security/cpuapr2016verbose-2881709.html
- https://rhn.redhat.com/errata/RHSA-2016-0705.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1329273
Frequently Asked Questions
What is the severity of CVE-2016-0668?
CVE-2016-0668 has not been assigned a specific CVSS score, but it is classified as a local availability vulnerability in Oracle MySQL and MariaDB.
How do I fix CVE-2016-0668?
To fix CVE-2016-0668, update to MySQL version 5.6.29 or later, 5.7.11 or later, or MariaDB version 10.0.24 or later, and 10.1.12 or later.
Which MySQL versions are affected by CVE-2016-0668?
CVE-2016-0668 affects Oracle MySQL versions 5.6.28 and earlier and 5.7.10 and earlier.
Which MariaDB versions are impacted by CVE-2016-0668?
CVE-2016-0668 impacts MariaDB versions 10.0.x before 10.0.24 and 10.1.x before 10.1.12.
What type of vulnerability is CVE-2016-0668?
CVE-2016-0668 is a local availability vulnerability that affects the InnoDB storage engine of MySQL and MariaDB.
- agent/type
- agent/severity
- agent/remedy
- agent/author
- agent/references
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-0668
- agent/software-canonical-lookup
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/oracle
- canonical/oracle mysql
- version/oracle mysql/5.6.0
- version/oracle mysql/5.6.28
- version/oracle mysql/5.7.0
- version/oracle mysql/5.7.10
- vendor/mariadb
- canonical/mariadb common
- version/mariadb common/10.0.0
- version/mariadb common/10.1.0
- version/mariadb common/10.1.12
- vendor/debian
- canonical/debian
- version/debian/8.0
- vendor/opensuse
- canonical/suse linux
- version/suse linux/42.1
- version/suse linux/13.2
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/12
- version/suse linux enterprise desktop/12-sp1
- canonical/suse linux enterprise server
- version/suse linux enterprise server/12
- version/suse linux enterprise server/12-sp1
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/12
- version/suse linux enterprise software development kit/12-sp1
- canonical/suse linux workstation extension
- version/suse linux workstation extension/12
- version/suse linux workstation extension/12-sp1
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/15.10