Action not permitted
Modal body text goes here.
cve-2017-10314
Vulnerability from cvelistv5
Published
2017-10-19 17:00
Modified
2024-10-04 16:53
Severity ?
EPSS score ?
Summary
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
References
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Oracle Corporation | MySQL Server |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:41:54.871Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2017-10314",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-04T15:45:04.662187Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-04T16:53:08.161Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "MySQL Server",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "5.6.37 and earlier"
},
{
"status": "affected",
"version": "5.7.19 and earlier"
}
]
}
],
"datePublic": "2017-10-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-13T10:57:01",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2017-10314",
"datePublished": "2017-10-19T17:00:00",
"dateReserved": "2017-06-21T00:00:00",
"dateUpdated": "2024-10-04T16:53:08.161Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-10314\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2017-10-19T17:29:02.920\",\"lastModified\":\"2017-12-14T02:29:05.557\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Memcached). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":1.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:N/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":4.0},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0089EDF-4806-417D-A4F1-63FF03C5AEF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"898A5CD5-83A5-4335-835F-759F82862753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C851FA0E-357E-4B9E-A441-9C74B3526B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B12FA18C-AB93-4522-AA2C-303342452E59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FD31981-E3ED-41D0-92EB-ABA7490D60E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E918FF1-8B40-4DC3-9269-1D3BFD18C58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BCD7C2D-49E9-4D78-90CF-F747A1584269\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7956E471-E98A-4527-A5F4-863210E09D5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615F499A-5C33-4E79-80FA-9A1453D8A3D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AD40EA2-F432-4F89-9E59-0DB4D415CA85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41494A2D-4BBC-4C3B-841F-878C2430A444\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A62DA4D8-27B4-4026-9035-75AC35F58439\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E948C884-E747-4E7C-B111-4A8DA22E421C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F933CF3-A850-4D3F-A16D-8129E246BF55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"038D17E1-2932-4D47-A748-F8A1D46B6721\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9028492-4114-4C9A-9E88-4B6C4FA6CC2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B844437C-3D19-4F50-8FBC-B1D0BDDEC59E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F96B5EE-782E-444F-8CA2-D178CD26FB3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5798742F-986C-4A46-8815-48003192EE92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7081F919-3653-465F-8171-80FA4E5D5E2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EB0F1D5-7355-4160-8C31-B109C6BA9BE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFF1373B-0F2A-402F-A402-D56CAEFB98EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FC0F977-D5B8-4528-9B57-4A9DEB500F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1775D2BE-117C-447C-B934-3F24E387F981\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22D8DCD5-9E5C-433A-9737-5EA50B48EA92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08D4C576-99EB-4890-B0BD-58F0DF60963E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5037477B-FE67-4474-930A-50A2EE72E2CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00A47740-11D4-4C1C-9AD7-0DF600BD3A17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCB0B03F-A264-4113-8961-41C28333503A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88127FDE-4695-4AC9-B6BA-F57149B2770D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"112BF532-FD22-4EFD-9D53-8999CB91FCDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F52D0C21-DDA9-43BC-BA88-38CAC12907F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B99FD46-71DF-464C-9E78-4B6F125B52BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56DD8C71-3CE1-43D7-A7FE-33B39726262B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2149A153-FB6A-4833-B382-39B762249BC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3238F3F7-13F0-49FE-BA3E-B6F6570A46EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E583CD-F1D5-43C0-9195-940BBB0C8650\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6C2EBC1-A32C-4866-8B19-2612DCA74A7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCA6A107-9B65-43C0-9EBA-69D83987F570\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"304EA995-F08B-4401-8736-515583E1027C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4B3F4DB-9290-448F-A41F-4ACE1802EB80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA58E346-4DEE-4429-9B57-41C05EE258F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62601284-98D9-403F-8270-300AE1AB8A6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B210C1E-8220-40DA-9976-2BFE209DD6A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69905126-C49A-4C38-8C31-6E34CA4E8322\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F82934F3-6C0D-4002-9E77-22A88DECE9C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8EF3DE1-DEF2-4AC0-8B36-0897402520A0\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101314\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039597\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3265\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3442\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20171019-0002/\",\"source\":\"secalert_us@oracle.com\"}]}}"
}
}
ghsa-hfm3-p2h9-37vf
Vulnerability from github
Published
2022-05-17 00:15
Modified
2022-05-17 00:15
Severity ?
Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
{
"affected": [],
"aliases": [
"CVE-2017-10314"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-19T17:29:00Z",
"severity": "MODERATE"
},
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GHSA-hfm3-p2h9-37vf",
"modified": "2022-05-17T00:15:29Z",
"published": "2022-05-17T00:15:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1039597"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
rhsa-2017_3265
Vulnerability from csaf_redhat
Published
2017-11-27 18:42
Modified
2024-11-14 21:45
Summary
Red Hat Security Advisory: rh-mysql56-mysql security update
Notes
Topic
An update for rh-mysql56-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql56-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3265",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3265.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql56-mysql security update",
"tracking": {
"current_release_date": "2024-11-14T21:45:54+00:00",
"generator": {
"date": "2024-11-14T21:45:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:3265",
"initial_release_date": "2017-11-27T18:42:33+00:00",
"revision_history": [
{
"date": "2017-11-27T18:42:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-11-27T18:42:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T21:45:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
}
]
}
rhsa-2017_3442
Vulnerability from csaf_redhat
Published
2017-12-12 13:32
Modified
2024-11-15 02:06
Summary
Red Hat Security Advisory: rh-mysql57-mysql security update
Notes
Topic
An update for rh-mysql57-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql57-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3442",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3442.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql57-mysql security update",
"tracking": {
"current_release_date": "2024-11-15T02:06:03+00:00",
"generator": {
"date": "2024-11-15T02:06:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:3442",
"initial_release_date": "2017-12-12T13:32:34+00:00",
"revision_history": [
{
"date": "2017-12-12T13:32:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-12-12T13:32:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:06:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10165",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503651"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10165"
},
{
"category": "external",
"summary": "RHBZ#1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10167",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503653"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10167"
},
{
"category": "external",
"summary": "RHBZ#1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10284",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503665"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10284"
},
{
"category": "external",
"summary": "RHBZ#1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10296",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503673"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10296"
},
{
"category": "external",
"summary": "RHBZ#1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10311",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503674"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10311"
},
{
"category": "external",
"summary": "RHBZ#1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10313",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503677"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10313"
},
{
"category": "external",
"summary": "RHBZ#1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10320",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503681"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10320"
},
{
"category": "external",
"summary": "RHBZ#1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10365",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503682"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10365"
},
{
"category": "external",
"summary": "RHBZ#1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2018-2562",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535484"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2562"
},
{
"category": "external",
"summary": "RHBZ#1535484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2562",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2562"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)"
},
{
"cve": "CVE-2018-2591",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535493"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2591"
},
{
"category": "external",
"summary": "RHBZ#1535493",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535493"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2591",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2591"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)"
}
]
}
gsd-2017-10314
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-10314",
"description": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10314",
"references": [
"https://www.suse.com/security/cve/CVE-2017-10314.html",
"https://access.redhat.com/errata/RHSA-2017:3442",
"https://access.redhat.com/errata/RHSA-2017:3265",
"https://ubuntu.com/security/CVE-2017-10314",
"https://alas.aws.amazon.com/cve/html/CVE-2017-10314.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-10314"
],
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10314",
"modified": "2023-12-13T01:21:15.023372Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "101314",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"tags": [],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6
}
},
"lastModifiedDate": "2017-12-14T02:29Z",
"publishedDate": "2017-10-19T17:29Z"
}
}
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.