Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-10294 (GCVE-0-2017-10294)
Vulnerability from cvelistv5 – Published: 2017-10-19 17:00 – Updated: 2024-10-04 16:54
VLAI?
EPSS
Summary
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Severity ?
No CVSS data available.
CWE
- Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Oracle Corporation | MySQL Server |
Affected:
5.6.37 and earlier
Affected: 5.7.19 and earlier |
Date Public ?
2017-10-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:33:17.119Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101444",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101444"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2017-10294",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-04T15:45:32.967916Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-04T16:54:40.740Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "MySQL Server",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "5.6.37 and earlier"
},
{
"status": "affected",
"version": "5.7.19 and earlier"
}
]
}
],
"datePublic": "2017-10-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-13T10:57:01.000Z",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101444",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101444"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10294",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101444",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101444"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2017-10294",
"datePublished": "2017-10-19T17:00:00.000Z",
"dateReserved": "2017-06-21T00:00:00.000Z",
"dateUpdated": "2024-10-04T16:54:40.740Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-10294\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2017-10-19T17:29:02.390\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Optimizer). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:S/C:N/I:N/A:P\",\"baseScore\":1.7,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.1,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0089EDF-4806-417D-A4F1-63FF03C5AEF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"898A5CD5-83A5-4335-835F-759F82862753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C851FA0E-357E-4B9E-A441-9C74B3526B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B12FA18C-AB93-4522-AA2C-303342452E59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FD31981-E3ED-41D0-92EB-ABA7490D60E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E918FF1-8B40-4DC3-9269-1D3BFD18C58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BCD7C2D-49E9-4D78-90CF-F747A1584269\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7956E471-E98A-4527-A5F4-863210E09D5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615F499A-5C33-4E79-80FA-9A1453D8A3D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AD40EA2-F432-4F89-9E59-0DB4D415CA85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41494A2D-4BBC-4C3B-841F-878C2430A444\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A62DA4D8-27B4-4026-9035-75AC35F58439\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E948C884-E747-4E7C-B111-4A8DA22E421C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F933CF3-A850-4D3F-A16D-8129E246BF55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"038D17E1-2932-4D47-A748-F8A1D46B6721\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9028492-4114-4C9A-9E88-4B6C4FA6CC2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B844437C-3D19-4F50-8FBC-B1D0BDDEC59E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F96B5EE-782E-444F-8CA2-D178CD26FB3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5798742F-986C-4A46-8815-48003192EE92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7081F919-3653-465F-8171-80FA4E5D5E2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EB0F1D5-7355-4160-8C31-B109C6BA9BE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFF1373B-0F2A-402F-A402-D56CAEFB98EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FC0F977-D5B8-4528-9B57-4A9DEB500F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1775D2BE-117C-447C-B934-3F24E387F981\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22D8DCD5-9E5C-433A-9737-5EA50B48EA92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08D4C576-99EB-4890-B0BD-58F0DF60963E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5037477B-FE67-4474-930A-50A2EE72E2CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00A47740-11D4-4C1C-9AD7-0DF600BD3A17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCB0B03F-A264-4113-8961-41C28333503A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88127FDE-4695-4AC9-B6BA-F57149B2770D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"112BF532-FD22-4EFD-9D53-8999CB91FCDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F52D0C21-DDA9-43BC-BA88-38CAC12907F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B99FD46-71DF-464C-9E78-4B6F125B52BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56DD8C71-3CE1-43D7-A7FE-33B39726262B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2149A153-FB6A-4833-B382-39B762249BC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3238F3F7-13F0-49FE-BA3E-B6F6570A46EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E583CD-F1D5-43C0-9195-940BBB0C8650\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6C2EBC1-A32C-4866-8B19-2612DCA74A7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCA6A107-9B65-43C0-9EBA-69D83987F570\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"304EA995-F08B-4401-8736-515583E1027C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4B3F4DB-9290-448F-A41F-4ACE1802EB80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA58E346-4DEE-4429-9B57-41C05EE258F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62601284-98D9-403F-8270-300AE1AB8A6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B210C1E-8220-40DA-9976-2BFE209DD6A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69905126-C49A-4C38-8C31-6E34CA4E8322\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F82934F3-6C0D-4002-9E77-22A88DECE9C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8EF3DE1-DEF2-4AC0-8B36-0897402520A0\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101444\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039597\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3265\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3442\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20171019-0002/\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101444\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039597\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3265\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3442\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20171019-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\", \"name\": \"RHSA-2017:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"http://www.securityfocus.com/bid/101444\", \"name\": \"101444\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\", \"x_transferred\"]}, {\"url\": \"http://www.securitytracker.com/id/1039597\", \"name\": \"1039597\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\", \"x_transferred\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\", \"name\": \"RHSA-2017:3442\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-05T17:33:17.119Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2017-10294\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-04T15:45:32.967916Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-04T15:47:20.112Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Oracle Corporation\", \"product\": \"MySQL Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.6.37 and earlier\"}, {\"status\": \"affected\", \"version\": \"5.7.19 and earlier\"}]}], \"datePublic\": \"2017-10-17T00:00:00.000Z\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\", \"name\": \"RHSA-2017:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"http://www.securityfocus.com/bid/101444\", \"name\": \"101444\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\"]}, {\"url\": \"http://www.securitytracker.com/id/1039597\", \"name\": \"1039597\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\", \"name\": \"RHSA-2017:3442\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.\"}]}], \"providerMetadata\": {\"orgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"shortName\": \"oracle\", \"dateUpdated\": \"2017-12-13T10:57:01.000Z\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"5.6.37 and earlier\", \"version_affected\": \"=\"}, {\"version_value\": \"5.7.19 and earlier\", \"version_affected\": \"=\"}]}, \"product_name\": \"MySQL Server\"}]}, \"vendor_name\": \"Oracle Corporation\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"name\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\", \"name\": \"RHSA-2017:3265\", \"refsource\": \"REDHAT\"}, {\"url\": \"http://www.securityfocus.com/bid/101444\", \"name\": \"101444\", \"refsource\": \"BID\"}, {\"url\": \"http://www.securitytracker.com/id/1039597\", \"name\": \"1039597\", \"refsource\": \"SECTRACK\"}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"name\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\", \"name\": \"RHSA-2017:3442\", \"refsource\": \"REDHAT\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2017-10294\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"secalert_us@oracle.com\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2017-10294\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-04T16:54:40.740Z\", \"dateReserved\": \"2017-06-21T00:00:00.000Z\", \"assignerOrgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"datePublished\": \"2017-10-19T17:00:00.000Z\", \"assignerShortName\": \"oracle\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2017-AVI-367
Vulnerability from certfr_avis - Published: 2017-10-18 - Updated: 2017-10-18
De multiples vulnérabilités ont été découvertes dans Oracle MySQL. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | MySQL | MySQL Server versions 5.5.57 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.7.19 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.4.2.4181 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.6.37 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.2.8.2223 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 6.9.9 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.3.4.3247 et antérieures |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MySQL Server versions 5.5.57 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.7.19 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.4.2.4181 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.6.37 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.2.8.2223 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 6.9.9 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.3.4.3247 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"name": "CVE-2017-10424",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10424"
},
{
"name": "CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"name": "CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"name": "CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"name": "CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"name": "CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"name": "CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"name": "CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"name": "CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"name": "CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"name": "CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"name": "CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"name": "CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"name": "CVE-2017-10277",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10277"
},
{
"name": "CVE-2017-5664",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5664"
},
{
"name": "CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"name": "CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"name": "CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"name": "CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"name": "CVE-2017-10203",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10203"
},
{
"name": "CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"name": "CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"name": "CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"name": "CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
}
],
"initial_release_date": "2017-10-18T00:00:00",
"last_revision_date": "2017-10-18T00:00:00",
"links": [],
"reference": "CERTFR-2017-AVI-367",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2017-10-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une atteinte\n\u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2017-3236626 du 18 octobre 2017",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
]
}
RHSA-2017:3265
Vulnerability from csaf_redhat - Published: 2017-11-27 18:42 - Updated: 2025-11-21 18:02Summary
Red Hat Security Advisory: rh-mysql56-mysql security update
Severity
Important
Notes
Topic: An update for rh-mysql56-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).
4.1 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3265
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql56-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3265",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3265.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql56-mysql security update",
"tracking": {
"current_release_date": "2025-11-21T18:02:56+00:00",
"generator": {
"date": "2025-11-21T18:02:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2017:3265",
"initial_release_date": "2017-11-27T18:42:33+00:00",
"revision_history": [
{
"date": "2017-11-27T18:42:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-11-27T18:42:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:02:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
}
]
}
RHSA-2017:3442
Vulnerability from csaf_redhat - Published: 2017-12-12 13:32 - Updated: 2026-01-13 22:36Summary
Red Hat Security Advisory: rh-mysql57-mysql security update
Severity
Important
Notes
Topic: An update for rh-mysql57-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).
4.1 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).
7.1 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
4.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the MySQL server daemon (mysqld) will be restarted automatically.
https://access.redhat.com/errata/RHSA-2017:3442
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql57-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3442",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3442.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql57-mysql security update",
"tracking": {
"current_release_date": "2026-01-13T22:36:35+00:00",
"generator": {
"date": "2026-01-13T22:36:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.15"
}
},
"id": "RHSA-2017:3442",
"initial_release_date": "2017-12-12T13:32:34+00:00",
"revision_history": [
{
"date": "2017-12-12T13:32:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-12-12T13:32:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-13T22:36:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10165",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503651"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10165"
},
{
"category": "external",
"summary": "RHBZ#1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10167",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503653"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10167"
},
{
"category": "external",
"summary": "RHBZ#1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10284",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503665"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10284"
},
{
"category": "external",
"summary": "RHBZ#1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10296",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503673"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10296"
},
{
"category": "external",
"summary": "RHBZ#1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10311",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503674"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10311"
},
{
"category": "external",
"summary": "RHBZ#1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10313",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503677"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10313"
},
{
"category": "external",
"summary": "RHBZ#1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10320",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503681"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10320"
},
{
"category": "external",
"summary": "RHBZ#1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10365",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503682"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10365"
},
{
"category": "external",
"summary": "RHBZ#1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2018-2562",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535484"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2562"
},
{
"category": "external",
"summary": "RHBZ#1535484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2562",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2562"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)"
},
{
"cve": "CVE-2018-2591",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535493"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2591"
},
{
"category": "external",
"summary": "RHBZ#1535493",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535493"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2591",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2591"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)"
}
]
}
CNVD-2017-32185
Vulnerability from cnvd - Published: 2017-10-30
VLAI Severity ?
Title
Oracle MySQL Server组件拒绝服务漏洞(CNVD-2017-32185)
Description
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。该数据库系统具有性能高、成本低、可靠性好等特点。MySQL Server是其中的服务器组件。
Oracle MySQL中的MySQL Server组件5.6.37及之前的版本和5.7.19及之前的版本的Server: Optimizer子组件存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(组件挂起和频繁崩溃),影响数据的可用性。
Severity
低
Patch Name
Oracle MySQL Server组件拒绝服务漏洞(CNVD-C-2017-129478)的补丁
Patch Description
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。该数据库系统具有性能高、成本低、可靠性好等特点。MySQL Server是其中的服务器组件。
Oracle MySQL中的MySQL Server组件5.6.37及之前的版本和5.7.19及之前的版本的Server: Optimizer子组件存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(组件挂起和频繁崩溃),影响数据的可用性。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Reference
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Impacted products
| Name | ['Oracle MySQL Server <=5.6.37', 'Oracle MySQL Server <=5.7.19'] |
|---|
{
"bids": {
"bid": {
"bidNumber": "101444"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2017-10294"
}
},
"description": "Oracle MySQL\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5173\u7cfb\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u6570\u636e\u5e93\u7cfb\u7edf\u5177\u6709\u6027\u80fd\u9ad8\u3001\u6210\u672c\u4f4e\u3001\u53ef\u9760\u6027\u597d\u7b49\u7279\u70b9\u3002MySQL Server\u662f\u5176\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u3002\r\n\r\nOracle MySQL\u4e2d\u7684MySQL Server\u7ec4\u4ef65.6.37\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c5.7.19\u53ca\u4e4b\u524d\u7684\u7248\u672c\u7684Server: Optimizer\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7ec4\u4ef6\u6302\u8d77\u548c\u9891\u7e41\u5d29\u6e83\uff09\uff0c\u5f71\u54cd\u6570\u636e\u7684\u53ef\u7528\u6027\u3002",
"discovererName": "Oracle",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-32185",
"openTime": "2017-10-30",
"patchDescription": "Oracle MySQL\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5173\u7cfb\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u6570\u636e\u5e93\u7cfb\u7edf\u5177\u6709\u6027\u80fd\u9ad8\u3001\u6210\u672c\u4f4e\u3001\u53ef\u9760\u6027\u597d\u7b49\u7279\u70b9\u3002MySQL Server\u662f\u5176\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u3002\r\n\r\nOracle MySQL\u4e2d\u7684MySQL Server\u7ec4\u4ef65.6.37\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c5.7.19\u53ca\u4e4b\u524d\u7684\u7248\u672c\u7684Server: Optimizer\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7ec4\u4ef6\u6302\u8d77\u548c\u9891\u7e41\u5d29\u6e83\uff09\uff0c\u5f71\u54cd\u6570\u636e\u7684\u53ef\u7528\u6027\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Oracle MySQL Server\u7ec4\u4ef6\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-C-2017-129478\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Oracle MySQL Server \u003c=5.6.37",
"Oracle MySQL Server \u003c=5.7.19"
]
},
"referenceLink": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"serverity": "\u4f4e",
"submitTime": "2017-10-18",
"title": "Oracle MySQL Server\u7ec4\u4ef6\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2017-32185\uff09"
}
GSD-2017-10294
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-10294",
"description": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10294",
"references": [
"https://www.suse.com/security/cve/CVE-2017-10294.html",
"https://access.redhat.com/errata/RHSA-2017:3442",
"https://access.redhat.com/errata/RHSA-2017:3265",
"https://ubuntu.com/security/CVE-2017-10294",
"https://alas.aws.amazon.com/cve/html/CVE-2017-10294.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-10294"
],
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10294",
"modified": "2023-12-13T01:21:14.827957Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10294",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101444",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101444"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10294"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "101444",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101444"
},
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"tags": [],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6
}
},
"lastModifiedDate": "2017-12-14T02:29Z",
"publishedDate": "2017-10-19T17:29Z"
}
}
}
FKIE_CVE-2017-10294
Vulnerability from fkie_nvd - Published: 2017-10-19 17:29 - Updated: 2025-04-20 01:37
Severity ?
Summary
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
References
| URL | Tags | ||
|---|---|---|---|
| secalert_us@oracle.com | http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html | Patch, Vendor Advisory | |
| secalert_us@oracle.com | http://www.securityfocus.com/bid/101444 | Third Party Advisory, VDB Entry | |
| secalert_us@oracle.com | http://www.securitytracker.com/id/1039597 | Third Party Advisory, VDB Entry | |
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2017:3265 | ||
| secalert_us@oracle.com | https://access.redhat.com/errata/RHSA-2017:3442 | ||
| secalert_us@oracle.com | https://security.netapp.com/advisory/ntap-20171019-0002/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101444 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1039597 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:3265 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:3442 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20171019-0002/ |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| oracle | mysql | 5.6.0 | |
| oracle | mysql | 5.6.1 | |
| oracle | mysql | 5.6.2 | |
| oracle | mysql | 5.6.3 | |
| oracle | mysql | 5.6.4 | |
| oracle | mysql | 5.6.5 | |
| oracle | mysql | 5.6.6 | |
| oracle | mysql | 5.6.7 | |
| oracle | mysql | 5.6.8 | |
| oracle | mysql | 5.6.9 | |
| oracle | mysql | 5.6.10 | |
| oracle | mysql | 5.6.11 | |
| oracle | mysql | 5.6.12 | |
| oracle | mysql | 5.6.13 | |
| oracle | mysql | 5.6.14 | |
| oracle | mysql | 5.6.15 | |
| oracle | mysql | 5.6.16 | |
| oracle | mysql | 5.6.17 | |
| oracle | mysql | 5.6.21 | |
| oracle | mysql | 5.6.22 | |
| oracle | mysql | 5.6.23 | |
| oracle | mysql | 5.6.26 | |
| oracle | mysql | 5.6.27 | |
| oracle | mysql | 5.6.28 | |
| oracle | mysql | 5.6.29 | |
| oracle | mysql | 5.6.30 | |
| oracle | mysql | 5.6.31 | |
| oracle | mysql | 5.6.32 | |
| oracle | mysql | 5.6.33 | |
| oracle | mysql | 5.6.34 | |
| oracle | mysql | 5.6.35 | |
| oracle | mysql | 5.6.36 | |
| oracle | mysql | 5.6.37 | |
| oracle | mysql | 5.7.0 | |
| oracle | mysql | 5.7.1 | |
| oracle | mysql | 5.7.2 | |
| oracle | mysql | 5.7.3 | |
| oracle | mysql | 5.7.4 | |
| oracle | mysql | 5.7.5 | |
| oracle | mysql | 5.7.6 | |
| oracle | mysql | 5.7.7 | |
| oracle | mysql | 5.7.8 | |
| oracle | mysql | 5.7.9 | |
| oracle | mysql | 5.7.10 | |
| oracle | mysql | 5.7.11 | |
| oracle | mysql | 5.7.12 | |
| oracle | mysql | 5.7.13 | |
| oracle | mysql | 5.7.14 | |
| oracle | mysql | 5.7.15 | |
| oracle | mysql | 5.7.16 | |
| oracle | mysql | 5.7.17 | |
| oracle | mysql | 5.7.18 | |
| oracle | mysql | 5.7.19 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"matchCriteriaId": "E948C884-E747-4E7C-B111-4A8DA22E421C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"matchCriteriaId": "0F933CF3-A850-4D3F-A16D-8129E246BF55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"matchCriteriaId": "038D17E1-2932-4D47-A748-F8A1D46B6721",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"matchCriteriaId": "E9028492-4114-4C9A-9E88-4B6C4FA6CC2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*",
"matchCriteriaId": "B844437C-3D19-4F50-8FBC-B1D0BDDEC59E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*",
"matchCriteriaId": "2F96B5EE-782E-444F-8CA2-D178CD26FB3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*",
"matchCriteriaId": "5798742F-986C-4A46-8815-48003192EE92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*",
"matchCriteriaId": "7081F919-3653-465F-8171-80FA4E5D5E2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*",
"matchCriteriaId": "0EB0F1D5-7355-4160-8C31-B109C6BA9BE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*",
"matchCriteriaId": "EFF1373B-0F2A-402F-A402-D56CAEFB98EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*",
"matchCriteriaId": "8FC0F977-D5B8-4528-9B57-4A9DEB500F40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*",
"matchCriteriaId": "1775D2BE-117C-447C-B934-3F24E387F981",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*",
"matchCriteriaId": "22D8DCD5-9E5C-433A-9737-5EA50B48EA92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*",
"matchCriteriaId": "08D4C576-99EB-4890-B0BD-58F0DF60963E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*",
"matchCriteriaId": "5037477B-FE67-4474-930A-50A2EE72E2CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*",
"matchCriteriaId": "00A47740-11D4-4C1C-9AD7-0DF600BD3A17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*",
"matchCriteriaId": "DCB0B03F-A264-4113-8961-41C28333503A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*",
"matchCriteriaId": "88127FDE-4695-4AC9-B6BA-F57149B2770D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*",
"matchCriteriaId": "034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*",
"matchCriteriaId": "BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "112BF532-FD22-4EFD-9D53-8999CB91FCDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F52D0C21-DDA9-43BC-BA88-38CAC12907F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5B99FD46-71DF-464C-9E78-4B6F125B52BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "56DD8C71-3CE1-43D7-A7FE-33B39726262B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2149A153-FB6A-4833-B382-39B762249BC2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3238F3F7-13F0-49FE-BA3E-B6F6570A46EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "40E583CD-F1D5-43C0-9195-940BBB0C8650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*",
"matchCriteriaId": "440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*",
"matchCriteriaId": "D6C2EBC1-A32C-4866-8B19-2612DCA74A7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*",
"matchCriteriaId": "9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CCA6A107-9B65-43C0-9EBA-69D83987F570",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*",
"matchCriteriaId": "304EA995-F08B-4401-8736-515583E1027C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A4B3F4DB-9290-448F-A41F-4ACE1802EB80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*",
"matchCriteriaId": "DA58E346-4DEE-4429-9B57-41C05EE258F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*",
"matchCriteriaId": "62601284-98D9-403F-8270-300AE1AB8A6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*",
"matchCriteriaId": "0B210C1E-8220-40DA-9976-2BFE209DD6A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*",
"matchCriteriaId": "69905126-C49A-4C38-8C31-6E34CA4E8322",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*",
"matchCriteriaId": "F82934F3-6C0D-4002-9E77-22A88DECE9C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*",
"matchCriteriaId": "D8EF3DE1-DEF2-4AC0-8B36-0897402520A0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
},
{
"lang": "es",
"value": "Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Optimizer). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
],
"id": "CVE-2017-10294",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-19T17:29:02.390",
"references": [
{
"source": "secalert_us@oracle.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101444"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"source": "secalert_us@oracle.com",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"source": "secalert_us@oracle.com",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"source": "secalert_us@oracle.com",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101444"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
}
],
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-6VF9-W2PM-G56X
Vulnerability from github – Published: 2022-05-17 00:15 – Updated: 2025-04-20 03:47
VLAI?
Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Severity ?
4.9 (Medium)
{
"affected": [],
"aliases": [
"CVE-2017-10294"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-19T17:29:00Z",
"severity": "MODERATE"
},
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GHSA-6vf9-w2pm-g56x",
"modified": "2025-04-20T03:47:09Z",
"published": "2022-05-17T00:15:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101444"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1039597"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…