Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-10314 (GCVE-0-2017-10314)
Vulnerability from cvelistv5 – Published: 2017-10-19 17:00 – Updated: 2024-10-04 16:53
VLAI?
EPSS
Summary
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Severity ?
No CVSS data available.
CWE
- Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Oracle Corporation | MySQL Server |
Affected:
5.6.37 and earlier
Affected: 5.7.19 and earlier |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:41:54.871Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2017-10314",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-04T15:45:04.662187Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-04T16:53:08.161Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "MySQL Server",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "5.6.37 and earlier"
},
{
"status": "affected",
"version": "5.7.19 and earlier"
}
]
}
],
"datePublic": "2017-10-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-13T10:57:01",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2017-10314",
"datePublished": "2017-10-19T17:00:00",
"dateReserved": "2017-06-21T00:00:00",
"dateUpdated": "2024-10-04T16:53:08.161Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0089EDF-4806-417D-A4F1-63FF03C5AEF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"898A5CD5-83A5-4335-835F-759F82862753\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C851FA0E-357E-4B9E-A441-9C74B3526B37\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B12FA18C-AB93-4522-AA2C-303342452E59\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6FD31981-E3ED-41D0-92EB-ABA7490D60E5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2E918FF1-8B40-4DC3-9269-1D3BFD18C58D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4BCD7C2D-49E9-4D78-90CF-F747A1584269\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7956E471-E98A-4527-A5F4-863210E09D5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"615F499A-5C33-4E79-80FA-9A1453D8A3D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4AD40EA2-F432-4F89-9E59-0DB4D415CA85\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"41494A2D-4BBC-4C3B-841F-878C2430A444\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A62DA4D8-27B4-4026-9035-75AC35F58439\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E948C884-E747-4E7C-B111-4A8DA22E421C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F933CF3-A850-4D3F-A16D-8129E246BF55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"038D17E1-2932-4D47-A748-F8A1D46B6721\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E9028492-4114-4C9A-9E88-4B6C4FA6CC2C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B844437C-3D19-4F50-8FBC-B1D0BDDEC59E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F96B5EE-782E-444F-8CA2-D178CD26FB3D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5798742F-986C-4A46-8815-48003192EE92\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7081F919-3653-465F-8171-80FA4E5D5E2A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0EB0F1D5-7355-4160-8C31-B109C6BA9BE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EFF1373B-0F2A-402F-A402-D56CAEFB98EC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FC0F977-D5B8-4528-9B57-4A9DEB500F40\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1775D2BE-117C-447C-B934-3F24E387F981\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"22D8DCD5-9E5C-433A-9737-5EA50B48EA92\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"08D4C576-99EB-4890-B0BD-58F0DF60963E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5037477B-FE67-4474-930A-50A2EE72E2CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"00A47740-11D4-4C1C-9AD7-0DF600BD3A17\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DCB0B03F-A264-4113-8961-41C28333503A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88127FDE-4695-4AC9-B6BA-F57149B2770D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"112BF532-FD22-4EFD-9D53-8999CB91FCDB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F52D0C21-DDA9-43BC-BA88-38CAC12907F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B99FD46-71DF-464C-9E78-4B6F125B52BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56DD8C71-3CE1-43D7-A7FE-33B39726262B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2149A153-FB6A-4833-B382-39B762249BC2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3238F3F7-13F0-49FE-BA3E-B6F6570A46EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40E583CD-F1D5-43C0-9195-940BBB0C8650\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D6C2EBC1-A32C-4866-8B19-2612DCA74A7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CCA6A107-9B65-43C0-9EBA-69D83987F570\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"304EA995-F08B-4401-8736-515583E1027C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4B3F4DB-9290-448F-A41F-4ACE1802EB80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DA58E346-4DEE-4429-9B57-41C05EE258F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"62601284-98D9-403F-8270-300AE1AB8A6E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B210C1E-8220-40DA-9976-2BFE209DD6A3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"69905126-C49A-4C38-8C31-6E34CA4E8322\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F82934F3-6C0D-4002-9E77-22A88DECE9C9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D8EF3DE1-DEF2-4AC0-8B36-0897402520A0\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Memcached). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}]",
"id": "CVE-2017-10314",
"lastModified": "2024-11-21T03:05:53.567",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 4.9, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.2, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:N/I:N/A:P\", \"baseScore\": 4.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2017-10-19T17:29:02.920",
"references": "[{\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"source\": \"secalert_us@oracle.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/101314\", \"source\": \"secalert_us@oracle.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1039597\", \"source\": \"secalert_us@oracle.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\", \"source\": \"secalert_us@oracle.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\", \"source\": \"secalert_us@oracle.com\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"source\": \"secalert_us@oracle.com\"}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/101314\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1039597\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2017-10314\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2017-10-19T17:29:02.920\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Memcached). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:N/A:P\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0089EDF-4806-417D-A4F1-63FF03C5AEF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"898A5CD5-83A5-4335-835F-759F82862753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C851FA0E-357E-4B9E-A441-9C74B3526B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B12FA18C-AB93-4522-AA2C-303342452E59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6FD31981-E3ED-41D0-92EB-ABA7490D60E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E918FF1-8B40-4DC3-9269-1D3BFD18C58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BCD7C2D-49E9-4D78-90CF-F747A1584269\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7956E471-E98A-4527-A5F4-863210E09D5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615F499A-5C33-4E79-80FA-9A1453D8A3D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AD40EA2-F432-4F89-9E59-0DB4D415CA85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41494A2D-4BBC-4C3B-841F-878C2430A444\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A62DA4D8-27B4-4026-9035-75AC35F58439\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E948C884-E747-4E7C-B111-4A8DA22E421C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F933CF3-A850-4D3F-A16D-8129E246BF55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"038D17E1-2932-4D47-A748-F8A1D46B6721\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9028492-4114-4C9A-9E88-4B6C4FA6CC2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B844437C-3D19-4F50-8FBC-B1D0BDDEC59E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F96B5EE-782E-444F-8CA2-D178CD26FB3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5798742F-986C-4A46-8815-48003192EE92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7081F919-3653-465F-8171-80FA4E5D5E2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EB0F1D5-7355-4160-8C31-B109C6BA9BE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFF1373B-0F2A-402F-A402-D56CAEFB98EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FC0F977-D5B8-4528-9B57-4A9DEB500F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1775D2BE-117C-447C-B934-3F24E387F981\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22D8DCD5-9E5C-433A-9737-5EA50B48EA92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08D4C576-99EB-4890-B0BD-58F0DF60963E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5037477B-FE67-4474-930A-50A2EE72E2CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00A47740-11D4-4C1C-9AD7-0DF600BD3A17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCB0B03F-A264-4113-8961-41C28333503A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88127FDE-4695-4AC9-B6BA-F57149B2770D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"112BF532-FD22-4EFD-9D53-8999CB91FCDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F52D0C21-DDA9-43BC-BA88-38CAC12907F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B99FD46-71DF-464C-9E78-4B6F125B52BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56DD8C71-3CE1-43D7-A7FE-33B39726262B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2149A153-FB6A-4833-B382-39B762249BC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3238F3F7-13F0-49FE-BA3E-B6F6570A46EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E583CD-F1D5-43C0-9195-940BBB0C8650\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6C2EBC1-A32C-4866-8B19-2612DCA74A7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCA6A107-9B65-43C0-9EBA-69D83987F570\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"304EA995-F08B-4401-8736-515583E1027C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4B3F4DB-9290-448F-A41F-4ACE1802EB80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA58E346-4DEE-4429-9B57-41C05EE258F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62601284-98D9-403F-8270-300AE1AB8A6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B210C1E-8220-40DA-9976-2BFE209DD6A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69905126-C49A-4C38-8C31-6E34CA4E8322\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F82934F3-6C0D-4002-9E77-22A88DECE9C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8EF3DE1-DEF2-4AC0-8B36-0897402520A0\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101314\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039597\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3265\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3442\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20171019-0002/\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101314\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039597\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3265\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3442\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20171019-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"affected\": [{\"product\": \"MySQL Server\", \"vendor\": \"Oracle Corporation\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.6.37 and earlier\"}, {\"status\": \"affected\", \"version\": \"5.7.19 and earlier\"}]}], \"datePublic\": \"2017-10-17T00:00:00\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}], \"problemTypes\": [{\"descriptions\": [{\"description\": \"Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.\", \"lang\": \"en\", \"type\": \"text\"}]}], \"providerMetadata\": {\"dateUpdated\": \"2017-12-13T10:57:01\", \"orgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"shortName\": \"oracle\"}, \"references\": [{\"tags\": [\"x_refsource_CONFIRM\"], \"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\"}, {\"name\": \"RHSA-2017:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"], \"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\"}, {\"name\": \"101314\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\"], \"url\": \"http://www.securityfocus.com/bid/101314\"}, {\"name\": \"1039597\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\"], \"url\": \"http://www.securitytracker.com/id/1039597\"}, {\"tags\": [\"x_refsource_CONFIRM\"], \"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\"}, {\"name\": \"RHSA-2017:3442\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"], \"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\"}], \"x_legacyV4Record\": {\"CVE_data_meta\": {\"ASSIGNER\": \"secalert_us@oracle.com\", \"ID\": \"CVE-2017-10314\", \"STATE\": \"PUBLIC\"}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"product_name\": \"MySQL Server\", \"version\": {\"version_data\": [{\"version_affected\": \"=\", \"version_value\": \"5.6.37 and earlier\"}, {\"version_affected\": \"=\", \"version_value\": \"5.7.19 and earlier\"}]}}]}, \"vendor_name\": \"Oracle Corporation\"}]}}, \"data_format\": \"MITRE\", \"data_type\": \"CVE\", \"data_version\": \"4.0\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.\"}]}]}, \"references\": {\"reference_data\": [{\"name\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\", \"refsource\": \"CONFIRM\", \"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\"}, {\"name\": \"RHSA-2017:3265\", \"refsource\": \"REDHAT\", \"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\"}, {\"name\": \"101314\", \"refsource\": \"BID\", \"url\": \"http://www.securityfocus.com/bid/101314\"}, {\"name\": \"1039597\", \"refsource\": \"SECTRACK\", \"url\": \"http://www.securitytracker.com/id/1039597\"}, {\"name\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\", \"refsource\": \"CONFIRM\", \"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\"}, {\"name\": \"RHSA-2017:3442\", \"refsource\": \"REDHAT\", \"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\"}]}}}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-05T17:41:54.871Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"], \"url\": \"https://security.netapp.com/advisory/ntap-20171019-0002/\"}, {\"name\": \"RHSA-2017:3265\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"], \"url\": \"https://access.redhat.com/errata/RHSA-2017:3265\"}, {\"name\": \"101314\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\", \"x_transferred\"], \"url\": \"http://www.securityfocus.com/bid/101314\"}, {\"name\": \"1039597\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\", \"x_transferred\"], \"url\": \"http://www.securitytracker.com/id/1039597\"}, {\"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"], \"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\"}, {\"name\": \"RHSA-2017:3442\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"], \"url\": \"https://access.redhat.com/errata/RHSA-2017:3442\"}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2017-10314\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-04T15:45:04.662187Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-04T15:46:39.605Z\"}}]}",
"cveMetadata": "{\"assignerOrgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"assignerShortName\": \"oracle\", \"cveId\": \"CVE-2017-10314\", \"datePublished\": \"2017-10-19T17:00:00\", \"dateReserved\": \"2017-06-21T00:00:00\", \"dateUpdated\": \"2024-10-04T16:53:08.161Z\", \"state\": \"PUBLISHED\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CNVD-2017-32206
Vulnerability from cnvd - Published: 2017-10-30
VLAI Severity ?
Title
Oracle MySQL Server拒绝服务漏洞(CNVD-2017-32206)
Description
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。该数据库系统具有性能高、成本低、可靠性好等特点。MySQL Server是其中的服务器组件。
Oracle MySQL中的MySQL Server组件5.6.37及之前的版本和5.7.19及之前的版本的Server: Memcached子组件存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(组件挂起和频繁崩溃),影响数据的可用性。
Severity
中
Patch Name
Oracle MySQL Server拒绝服务漏洞(CNVD-2017-32206)的补丁
Patch Description
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。该数据库系统具有性能高、成本低、可靠性好等特点。MySQL Server是其中的服务器组件。
Oracle MySQL中的MySQL Server组件5.6.37及之前的版本和5.7.19及之前的版本的Server: Memcached子组件存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(组件挂起和频繁崩溃),影响数据的可用性。 目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Reference
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Impacted products
| Name | ['Oracle MySQL Server <=5.6.37', 'Oracle MySQL Server <=5.7.19'] |
|---|
{
"bids": {
"bid": {
"bidNumber": "101314"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2017-10314"
}
},
"description": "Oracle MySQL\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5173\u7cfb\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u6570\u636e\u5e93\u7cfb\u7edf\u5177\u6709\u6027\u80fd\u9ad8\u3001\u6210\u672c\u4f4e\u3001\u53ef\u9760\u6027\u597d\u7b49\u7279\u70b9\u3002MySQL Server\u662f\u5176\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u3002\r\n\r\nOracle MySQL\u4e2d\u7684MySQL Server\u7ec4\u4ef65.6.37\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c5.7.19\u53ca\u4e4b\u524d\u7684\u7248\u672c\u7684Server: Memcached\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7ec4\u4ef6\u6302\u8d77\u548c\u9891\u7e41\u5d29\u6e83\uff09\uff0c\u5f71\u54cd\u6570\u636e\u7684\u53ef\u7528\u6027\u3002",
"discovererName": "Oracle",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-32206",
"openTime": "2017-10-30",
"patchDescription": "Oracle MySQL\u662f\u7f8e\u56fd\u7532\u9aa8\u6587\uff08Oracle\uff09\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5173\u7cfb\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u6570\u636e\u5e93\u7cfb\u7edf\u5177\u6709\u6027\u80fd\u9ad8\u3001\u6210\u672c\u4f4e\u3001\u53ef\u9760\u6027\u597d\u7b49\u7279\u70b9\u3002MySQL Server\u662f\u5176\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u3002\r\n\r\nOracle MySQL\u4e2d\u7684MySQL Server\u7ec4\u4ef65.6.37\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c5.7.19\u53ca\u4e4b\u524d\u7684\u7248\u672c\u7684Server: Memcached\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u7ec4\u4ef6\u6302\u8d77\u548c\u9891\u7e41\u5d29\u6e83\uff09\uff0c\u5f71\u54cd\u6570\u636e\u7684\u53ef\u7528\u6027\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Oracle MySQL Server\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2017-32206\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Oracle MySQL Server \u003c=5.6.37",
"Oracle MySQL Server \u003c=5.7.19"
]
},
"referenceLink": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"serverity": "\u4e2d",
"submitTime": "2017-10-18",
"title": "Oracle MySQL Server\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2017-32206\uff09"
}
GHSA-HFM3-P2H9-37VF
Vulnerability from github – Published: 2022-05-17 00:15 – Updated: 2025-04-20 03:47
VLAI?
Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Severity ?
4.9 (Medium)
{
"affected": [],
"aliases": [
"CVE-2017-10314"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-19T17:29:00Z",
"severity": "MODERATE"
},
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GHSA-hfm3-p2h9-37vf",
"modified": "2025-04-20T03:47:10Z",
"published": "2022-05-17T00:15:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1039597"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
CERTFR-2017-AVI-367
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Oracle MySQL. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | MySQL | MySQL Server versions 5.5.57 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.7.19 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.4.2.4181 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.6.37 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.2.8.2223 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 6.9.9 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.3.4.3247 et antérieures |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MySQL Server versions 5.5.57 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.7.19 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.4.2.4181 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.6.37 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.2.8.2223 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 6.9.9 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.3.4.3247 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"name": "CVE-2017-10424",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10424"
},
{
"name": "CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"name": "CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"name": "CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"name": "CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"name": "CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"name": "CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"name": "CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"name": "CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"name": "CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"name": "CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"name": "CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"name": "CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"name": "CVE-2017-10277",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10277"
},
{
"name": "CVE-2017-5664",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5664"
},
{
"name": "CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"name": "CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"name": "CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"name": "CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"name": "CVE-2017-10203",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10203"
},
{
"name": "CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"name": "CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"name": "CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"name": "CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
}
],
"links": [],
"reference": "CERTFR-2017-AVI-367",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2017-10-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une atteinte\n\u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2017-3236626 du 18 octobre 2017",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
]
}
CERTFR-2017-AVI-367
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Oracle MySQL. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | MySQL | MySQL Server versions 5.5.57 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.7.19 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.4.2.4181 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 5.6.37 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.2.8.2223 et antérieures | ||
| Oracle | MySQL | MySQL Server versions 6.9.9 et antérieures | ||
| Oracle | MySQL | MySQL Enterprise Monitor 3.3.4.3247 et antérieures |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MySQL Server versions 5.5.57 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.7.19 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.4.2.4181 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 5.6.37 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.2.8.2223 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server versions 6.9.9 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Monitor 3.3.4.3247 et ant\u00e9rieures",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"name": "CVE-2017-10424",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10424"
},
{
"name": "CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"name": "CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"name": "CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"name": "CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"name": "CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"name": "CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"name": "CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"name": "CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"name": "CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"name": "CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"name": "CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"name": "CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"name": "CVE-2017-10277",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10277"
},
{
"name": "CVE-2017-5664",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5664"
},
{
"name": "CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"name": "CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"name": "CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"name": "CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"name": "CVE-2017-10203",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10203"
},
{
"name": "CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"name": "CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"name": "CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"name": "CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
}
],
"links": [],
"reference": "CERTFR-2017-AVI-367",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2017-10-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une atteinte\n\u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2017-3236626 du 18 octobre 2017",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
]
}
RHSA-2017:3442
Vulnerability from csaf_redhat - Published: 2017-12-12 13:32 - Updated: 2025-11-21 18:03Summary
Red Hat Security Advisory: rh-mysql57-mysql security update
Notes
Topic
An update for rh-mysql57-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql57-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3442",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3442.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql57-mysql security update",
"tracking": {
"current_release_date": "2025-11-21T18:03:05+00:00",
"generator": {
"date": "2025-11-21T18:03:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2017:3442",
"initial_release_date": "2017-12-12T13:32:34+00:00",
"revision_history": [
{
"date": "2017-12-12T13:32:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-12-12T13:32:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:03:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10165",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503651"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10165"
},
{
"category": "external",
"summary": "RHBZ#1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10167",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503653"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10167"
},
{
"category": "external",
"summary": "RHBZ#1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10284",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503665"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10284"
},
{
"category": "external",
"summary": "RHBZ#1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10296",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503673"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10296"
},
{
"category": "external",
"summary": "RHBZ#1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10311",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503674"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10311"
},
{
"category": "external",
"summary": "RHBZ#1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10313",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503677"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10313"
},
{
"category": "external",
"summary": "RHBZ#1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10320",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503681"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10320"
},
{
"category": "external",
"summary": "RHBZ#1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10365",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503682"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10365"
},
{
"category": "external",
"summary": "RHBZ#1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2018-2562",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535484"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2562"
},
{
"category": "external",
"summary": "RHBZ#1535484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2562",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2562"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)"
},
{
"cve": "CVE-2018-2591",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535493"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2591"
},
{
"category": "external",
"summary": "RHBZ#1535493",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535493"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2591",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2591"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)"
}
]
}
RHSA-2017_3442
Vulnerability from csaf_redhat - Published: 2017-12-12 13:32 - Updated: 2024-11-15 02:06Summary
Red Hat Security Advisory: rh-mysql57-mysql security update
Notes
Topic
An update for rh-mysql57-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql57-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql57-mysql (5.7.20). (BZ#1505114)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10165, CVE-2017-10167, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10284, CVE-2017-10286, CVE-2017-10294, CVE-2017-10296, CVE-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10365, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3442",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3442.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql57-mysql security update",
"tracking": {
"current_release_date": "2024-11-15T02:06:03+00:00",
"generator": {
"date": "2024-11-15T02:06:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:3442",
"initial_release_date": "2017-12-12T13:32:34+00:00",
"revision_history": [
{
"date": "2017-12-12T13:32:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-12-12T13:32:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:06:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-common@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-test@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-debuginfo@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-server@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-errmsg@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-devel@5.7.20-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_id": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql-config@5.7.20-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_id": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql57-mysql@5.7.20-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
},
"product_reference": "rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10165",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503651"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10165"
},
{
"category": "external",
"summary": "RHBZ#1503651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10165",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10165"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10167",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503653"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10167"
},
{
"category": "external",
"summary": "RHBZ#1503653",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503653"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10167",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10167"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10167"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10284",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503665"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10284"
},
{
"category": "external",
"summary": "RHBZ#1503665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503665"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10284",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10284"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10296",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503673"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10296"
},
{
"category": "external",
"summary": "RHBZ#1503673",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503673"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10296",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10296"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DML unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10311",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503674"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10311"
},
{
"category": "external",
"summary": "RHBZ#1503674",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503674"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10311",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10311"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10313",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503677"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10313"
},
{
"category": "external",
"summary": "RHBZ#1503677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503677"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10313",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10313"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10313"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10320",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503681"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10320"
},
{
"category": "external",
"summary": "RHBZ#1503681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10320",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10320"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10320"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10365",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503682"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.0 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10365"
},
{
"category": "external",
"summary": "RHBZ#1503682",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503682"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10365",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10365"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10365"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2018-2562",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535484"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2562"
},
{
"category": "external",
"summary": "RHBZ#1535484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2562",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2562"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2562"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Partition unspecified vulnerability (CPU Jan 2018)"
},
{
"cve": "CVE-2018-2591",
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535493"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2591"
},
{
"category": "external",
"summary": "RHBZ#1535493",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535493"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2591",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2591"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2591"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
}
],
"release_date": "2018-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-12-12T13:32:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-common-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-config-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-debuginfo-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-devel-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-errmsg-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-server-0:5.7.20-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql57-mysql-test-0:5.7.20-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server : Partition unspecified vulnerability (CPU Jan 2018)"
}
]
}
RHSA-2017:3265
Vulnerability from csaf_redhat - Published: 2017-11-27 18:42 - Updated: 2025-11-21 18:02Summary
Red Hat Security Advisory: rh-mysql56-mysql security update
Notes
Topic
An update for rh-mysql56-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql56-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3265",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3265.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql56-mysql security update",
"tracking": {
"current_release_date": "2025-11-21T18:02:56+00:00",
"generator": {
"date": "2025-11-21T18:02:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2017:3265",
"initial_release_date": "2017-11-27T18:42:33+00:00",
"revision_history": [
{
"date": "2017-11-27T18:42:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-11-27T18:42:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:02:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
}
]
}
RHSA-2017_3265
Vulnerability from csaf_redhat - Published: 2017-11-27 18:42 - Updated: 2024-11-14 21:45Summary
Red Hat Security Advisory: rh-mysql56-mysql security update
Notes
Topic
An update for rh-mysql56-mysql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.
The following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)
Security Fix(es):
* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-mysql56-mysql is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.\n\nThe following packages have been upgraded to a later upstream version: rh-mysql56-mysql (5.6.38). (BZ#1505112)\n\nSecurity Fix(es):\n\n* This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page listed in the References section. (CVE-2017-10155, CVE-2017-10227, CVE-2017-10268, CVE-2017-10276, CVE-2017-10279, CVE-2017-10283, CVE-2017-10286, CVE-2017-10294, CVE-2017-10314, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:3265",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
},
{
"category": "external",
"summary": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html",
"url": "https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html"
},
{
"category": "external",
"summary": "1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3265.json"
}
],
"title": "Red Hat Security Advisory: rh-mysql56-mysql security update",
"tracking": {
"current_release_date": "2024-11-14T21:45:54+00:00",
"generator": {
"date": "2024-11-14T21:45:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:3265",
"initial_release_date": "2017-11-27T18:42:33+00:00",
"revision_history": [
{
"date": "2017-11-27T18:42:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-11-27T18:42:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T21:45:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-config@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-debuginfo@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-bench@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-test@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-common@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-errmsg@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-server@5.6.38-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_id": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql-devel@5.6.38-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_id": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-mysql56-mysql@5.6.38-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0-6.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
},
"product_reference": "rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10155",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503649"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10155"
},
{
"category": "external",
"summary": "RHBZ#1503649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503649"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10155"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10227",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503654"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10227"
},
{
"category": "external",
"summary": "RHBZ#1503654",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503654"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10227",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10227"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10227"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10268",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503656"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10268"
},
{
"category": "external",
"summary": "RHBZ#1503656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10268",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10268"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10268"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Replication unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10276",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503659"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10276"
},
{
"category": "external",
"summary": "RHBZ#1503659",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503659"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10276",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10276"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10276"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: FTS unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10279",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503663"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10279"
},
{
"category": "external",
"summary": "RHBZ#1503663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503663"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10279",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10279"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10279"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10283",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503664"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10283"
},
{
"category": "external",
"summary": "RHBZ#1503664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10283",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10283"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Performance Schema unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10286",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503669"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10286"
},
{
"category": "external",
"summary": "RHBZ#1503669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503669"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10286",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10286"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: InnoDB unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10294",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503671"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10294"
},
{
"category": "external",
"summary": "RHBZ#1503671",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503671"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10294",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10294"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10314",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503679"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10314"
},
{
"category": "external",
"summary": "RHBZ#1503679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503679"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10314",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10314"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10314"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Memcached unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10378",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503684"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10378"
},
{
"category": "external",
"summary": "RHBZ#1503684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10378",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10378"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10379",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503685"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10379"
},
{
"category": "external",
"summary": "RHBZ#1503685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10379",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10379"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10379"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Client programs unspecified vulnerability (CPU Oct 2017)"
},
{
"cve": "CVE-2017-10384",
"discovery_date": "2017-10-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1503686"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10384"
},
{
"category": "external",
"summary": "RHBZ#1503686",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503686"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10384",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10384"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL"
}
],
"release_date": "2017-10-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-11-27T18:42:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the MySQL server daemon (mysqld) will be restarted automatically.",
"product_ids": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0-6.7.Z:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.src",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el6.x86_64",
"6Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el6.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.3.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0-7.4.Z:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Server-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Server-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.src",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-bench-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-common-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-config-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-debuginfo-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-devel-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-errmsg-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-server-0:5.6.38-1.el7.x86_64",
"7Workstation-RHSCL-3.0:rh-mysql56-mysql-test-0:5.6.38-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: Server: DDL unspecified vulnerability (CPU Oct 2017)"
}
]
}
GSD-2017-10314
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-10314",
"description": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10314",
"references": [
"https://www.suse.com/security/cve/CVE-2017-10314.html",
"https://access.redhat.com/errata/RHSA-2017:3442",
"https://access.redhat.com/errata/RHSA-2017:3265",
"https://ubuntu.com/security/CVE-2017-10314",
"https://alas.aws.amazon.com/cve/html/CVE-2017-10314.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-10314"
],
"details": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).",
"id": "GSD-2017-10314",
"modified": "2023-12-13T01:21:15.023372Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MySQL Server",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "5.6.37 and earlier"
},
{
"version_affected": "=",
"version_value": "5.7.19 and earlier"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "101314",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2017-10314"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"name": "1039597",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"name": "101314",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"name": "https://security.netapp.com/advisory/ntap-20171019-0002/",
"refsource": "CONFIRM",
"tags": [],
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"name": "RHSA-2017:3265",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"name": "RHSA-2017:3442",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6
}
},
"lastModifiedDate": "2017-12-14T02:29Z",
"publishedDate": "2017-10-19T17:29Z"
}
}
}
FKIE_CVE-2017-10314
Vulnerability from fkie_nvd - Published: 2017-10-19 17:29 - Updated: 2025-04-20 01:37
Severity ?
Summary
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"matchCriteriaId": "E948C884-E747-4E7C-B111-4A8DA22E421C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"matchCriteriaId": "0F933CF3-A850-4D3F-A16D-8129E246BF55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"matchCriteriaId": "038D17E1-2932-4D47-A748-F8A1D46B6721",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"matchCriteriaId": "E9028492-4114-4C9A-9E88-4B6C4FA6CC2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.17:*:*:*:*:*:*:*",
"matchCriteriaId": "B844437C-3D19-4F50-8FBC-B1D0BDDEC59E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.21:*:*:*:*:*:*:*",
"matchCriteriaId": "2F96B5EE-782E-444F-8CA2-D178CD26FB3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.22:*:*:*:*:*:*:*",
"matchCriteriaId": "5798742F-986C-4A46-8815-48003192EE92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.23:*:*:*:*:*:*:*",
"matchCriteriaId": "7081F919-3653-465F-8171-80FA4E5D5E2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:*",
"matchCriteriaId": "0EB0F1D5-7355-4160-8C31-B109C6BA9BE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.27:*:*:*:*:*:*:*",
"matchCriteriaId": "EFF1373B-0F2A-402F-A402-D56CAEFB98EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.28:*:*:*:*:*:*:*",
"matchCriteriaId": "8FC0F977-D5B8-4528-9B57-4A9DEB500F40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.29:*:*:*:*:*:*:*",
"matchCriteriaId": "1775D2BE-117C-447C-B934-3F24E387F981",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.30:*:*:*:*:*:*:*",
"matchCriteriaId": "22D8DCD5-9E5C-433A-9737-5EA50B48EA92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.31:*:*:*:*:*:*:*",
"matchCriteriaId": "08D4C576-99EB-4890-B0BD-58F0DF60963E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.32:*:*:*:*:*:*:*",
"matchCriteriaId": "5037477B-FE67-4474-930A-50A2EE72E2CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.33:*:*:*:*:*:*:*",
"matchCriteriaId": "00A47740-11D4-4C1C-9AD7-0DF600BD3A17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.34:*:*:*:*:*:*:*",
"matchCriteriaId": "DCB0B03F-A264-4113-8961-41C28333503A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.35:*:*:*:*:*:*:*",
"matchCriteriaId": "88127FDE-4695-4AC9-B6BA-F57149B2770D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.36:*:*:*:*:*:*:*",
"matchCriteriaId": "034D7BE0-14EA-4CCB-91DF-3B1A4A8AA78C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.37:*:*:*:*:*:*:*",
"matchCriteriaId": "BD09E3CF-B900-4B0A-BFE7-8BADA709AD1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "006CE9D3-B3EC-4E4A-91AB-DCD2A32A271F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "112BF532-FD22-4EFD-9D53-8999CB91FCDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F52D0C21-DDA9-43BC-BA88-38CAC12907F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5B99FD46-71DF-464C-9E78-4B6F125B52BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "56DD8C71-3CE1-43D7-A7FE-33B39726262B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2149A153-FB6A-4833-B382-39B762249BC2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3238F3F7-13F0-49FE-BA3E-B6F6570A46EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "40E583CD-F1D5-43C0-9195-940BBB0C8650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.8:*:*:*:*:*:*:*",
"matchCriteriaId": "440D9A94-D9E8-41C7-8ADC-9EA7CA4001E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.9:*:*:*:*:*:*:*",
"matchCriteriaId": "D6C2EBC1-A32C-4866-8B19-2612DCA74A7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.10:*:*:*:*:*:*:*",
"matchCriteriaId": "9B09B320-E2C0-4B6B-846D-FCE5F65E4DFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CCA6A107-9B65-43C0-9EBA-69D83987F570",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.12:*:*:*:*:*:*:*",
"matchCriteriaId": "304EA995-F08B-4401-8736-515583E1027C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A4B3F4DB-9290-448F-A41F-4ACE1802EB80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.14:*:*:*:*:*:*:*",
"matchCriteriaId": "DA58E346-4DEE-4429-9B57-41C05EE258F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.15:*:*:*:*:*:*:*",
"matchCriteriaId": "62601284-98D9-403F-8270-300AE1AB8A6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.16:*:*:*:*:*:*:*",
"matchCriteriaId": "0B210C1E-8220-40DA-9976-2BFE209DD6A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.17:*:*:*:*:*:*:*",
"matchCriteriaId": "69905126-C49A-4C38-8C31-6E34CA4E8322",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.18:*:*:*:*:*:*:*",
"matchCriteriaId": "F82934F3-6C0D-4002-9E77-22A88DECE9C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.7.19:*:*:*:*:*:*:*",
"matchCriteriaId": "D8EF3DE1-DEF2-4AC0-8B36-0897402520A0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
},
{
"lang": "es",
"value": "Vulnerabilidad en el componente MySQL Server en Oracle MySQL (subcomponente: Server: Memcached). Las versiones compatibles que se han visto afectadas son la 5.6.37 y anteriores, y la 5.7.19 y anteriores. Una vulnerabilidad f\u00e1cilmente explotable permite que un atacante con un alto nivel de privilegios que tenga acceso a red por medio de m\u00faltiples protocolos comprometa la seguridad de MySQL Server. Los ataques exitosos a esta vulnerabilidad pueden dar lugar a la capacidad no autorizada de provocar el bloqueo o cierre inesperado, frecuente y repetido (DoS completo) de MySQL Server. CVSS 3.0 Base Score 4.9 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
}
],
"id": "CVE-2017-10314",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-19T17:29:02.920",
"references": [
{
"source": "secalert_us@oracle.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"source": "secalert_us@oracle.com",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"source": "secalert_us@oracle.com",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"source": "secalert_us@oracle.com",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101314"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039597"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2017:3265"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2017:3442"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.netapp.com/advisory/ntap-20171019-0002/"
}
],
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…