Vulnerabilities > CVE-2015-4771 - Remote Security vulnerability in Oracle MySQL Server

047910
CVSS 3.5 - LOW
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
canonical
oracle
nessus

Summary

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to RBR.

Vulnerable Configurations

Part Description Count
OS
Canonical
4
Application
Oracle
499

Nessus

  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2015-608.NASL
    descriptionThe MySQL Community Server edition was updated to 5.6.26, fixing security issues and bugs. All changes: http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-26.html - Fixed CVEs: CVE-2015-2617, CVE-2015-2648, CVE-2015-2611, CVE-2015-2582 CVE-2015-4752, CVE-2015-4756, CVE-2015-2643, CVE-2015-4772 CVE-2015-4761, CVE-2015-4757, CVE-2015-4737, CVE-2015-4771 CVE-2015-4769, CVE-2015-2639, CVE-2015-2620, CVE-2015-2641 CVE-2015-2661, CVE-2015-4767 - disable Performance Schema by default. Since MySQL 5.6.6 upstream enabled Performance Schema by default which results in increased memory usage. The added option disable Performance Schema again in order to decrease MySQL memory usage [bnc#852477]. - install INFO_BIN and INFO_SRC, noticed in MDEV-6912 - remove superfluous
    last seen2020-06-05
    modified2015-09-28
    plugin id86182
    published2015-09-28
    reporterThis script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/86182
    titleopenSUSE Security Update : mysql-community-server (openSUSE-2015-608)
    code
    #%NASL_MIN_LEVEL 80502
    #
    # (C) Tenable Network Security, Inc.
    #
    # The descriptive text and package checks in this plugin were
    # extracted from openSUSE Security Update openSUSE-2015-608.
    #
    # The text description of this plugin is (C) SUSE LLC.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(86182);
      script_version("2.6");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04");
    
      script_cve_id("CVE-2015-2582", "CVE-2015-2611", "CVE-2015-2617", "CVE-2015-2620", "CVE-2015-2639", "CVE-2015-2641", "CVE-2015-2643", "CVE-2015-2648", "CVE-2015-2661", "CVE-2015-4737", "CVE-2015-4752", "CVE-2015-4756", "CVE-2015-4757", "CVE-2015-4761", "CVE-2015-4767", "CVE-2015-4769", "CVE-2015-4771", "CVE-2015-4772");
    
      script_name(english:"openSUSE Security Update : mysql-community-server (openSUSE-2015-608)");
      script_summary(english:"Check for the openSUSE-2015-608 patch");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"The remote openSUSE host is missing a security update."
      );
      script_set_attribute(
        attribute:"description", 
        value:
    "The MySQL Community Server edition was updated to 5.6.26, fixing
    security issues and bugs.
    
    All changes:
    http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-26.html
    
      - Fixed CVEs: CVE-2015-2617, CVE-2015-2648, CVE-2015-2611,
        CVE-2015-2582 CVE-2015-4752, CVE-2015-4756,
        CVE-2015-2643, CVE-2015-4772 CVE-2015-4761,
        CVE-2015-4757, CVE-2015-4737, CVE-2015-4771
        CVE-2015-4769, CVE-2015-2639, CVE-2015-2620,
        CVE-2015-2641 CVE-2015-2661, CVE-2015-4767
    
      - disable Performance Schema by default. Since MySQL 5.6.6
        upstream enabled Performance Schema by default which
        results in increased memory usage. The added option
        disable Performance Schema again in order to decrease
        MySQL memory usage [bnc#852477].
    
      - install INFO_BIN and INFO_SRC, noticed in MDEV-6912
    
      - remove superfluous '--group' parameter from
        mysql-systemd-helper
    
      - make -devel package installable in the presence of
        LibreSSL
    
      - cleanup after the update-message if it was displayed
    
      - add 'exec' to mysql-systemd-helper to shutdown
        mysql/mariadb cleanly [bnc#943096]"
      );
      # http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-26.html
      script_set_attribute(
        attribute:"see_also",
        value:"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-26.html"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://bugzilla.opensuse.org/show_bug.cgi?id=852477"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://bugzilla.opensuse.org/show_bug.cgi?id=902396"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://bugzilla.opensuse.org/show_bug.cgi?id=938412"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://bugzilla.opensuse.org/show_bug.cgi?id=942908"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://bugzilla.opensuse.org/show_bug.cgi?id=943096"
      );
      script_set_attribute(
        attribute:"solution", 
        value:"Update the affected mysql-community-server packages."
      );
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-32bit");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client18-debuginfo-32bit");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client_r18");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmysql56client_r18-32bit");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-bench");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-bench-debuginfo");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-client");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-client-debuginfo");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-debuginfo");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-debugsource");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-errormessages");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-test");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-test-debuginfo");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-tools");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql-community-server-tools-debuginfo");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2");
    
      script_set_attribute(attribute:"patch_publication_date", value:"2015/09/07");
      script_set_attribute(attribute:"plugin_publication_date", value:"2015/09/28");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
      script_family(english:"SuSE Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
    
      exit(0);
    }
    
    
    include("audit.inc");
    include("global_settings.inc");
    include("rpm.inc");
    
    if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    release = get_kb_item("Host/SuSE/release");
    if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
    if (release !~ "^(SUSE13\.1|SUSE13\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1 / 13.2", release);
    if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    ourarch = get_kb_item("Host/cpu");
    if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
    if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
    
    flag = 0;
    
    if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client18-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client18-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"libmysql56client_r18-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-bench-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-bench-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-client-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-client-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-debugsource-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-errormessages-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-test-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-test-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-tools-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", reference:"mysql-community-server-tools-debuginfo-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client18-32bit-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client18-debuginfo-32bit-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"libmysql56client_r18-32bit-5.6.26-7.10.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client18-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client18-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"libmysql56client_r18-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-bench-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-bench-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-client-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-client-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-debugsource-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-errormessages-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-test-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-test-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-tools-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", reference:"mysql-community-server-tools-debuginfo-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client18-32bit-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client18-debuginfo-32bit-5.6.26-2.9.1") ) flag++;
    if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"libmysql56client_r18-32bit-5.6.26-2.9.1") ) flag++;
    
    if (flag)
    {
      if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
      else security_warning(0);
      exit(0);
    }
    else
    {
      tested = pkg_tests_get();
      if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
      else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libmysql56client18-32bit / libmysql56client18 / etc");
    }
    
  • NASL familyDatabases
    NASL idMYSQL_5_6_25_RPM.NASL
    descriptionThe version of Oracle MySQL installed on the remote host is 5.6.x prior to 5.6.25. It is, therefore, affected by the following vulnerabilities : - Multiple denial of service vulnerabilities exist in the following subcomponents which can be exploited by a remote, authenticated attacker : - Partition (CVE-2015-2617) - DML (CVE-2015-2648, CVE-2015-2611) - GIS (CVE-2015-2582) - I_S (CVE-2015-4752) - Optimizer (CVE-2015-2643) - Partition (CVE-2015-4772) - Memcached (CVE-2015-4761) - RBR (CVE-2015-4771) - Security:Firewall (CVE-2015-4769, CVE-2015-4767) - Security:Privileges (CVE-2015-2641) - An unspecified vulnerability exists related to the Security:Firewall subcomponent that can be exploited by an authenticated, remote attacker to have an impact on the integrity of the system. (CVE-2015-2639) - A denial of service vulnerability exists in the Client subcomponent which can be exploited by a local attacker. (CVE-2015-2661) - An unspecified flaw exists in the Security:Privileges subcomponent. An authenticated, remote attacker can exploit this to impact integrity. (CVE-2015-4864)
    last seen2020-06-04
    modified2015-08-19
    plugin id85539
    published2015-08-19
    reporterThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/85539
    titleOracle MySQL 5.6.x < 5.6.25 Multiple Vulnerabilities (July 2015 CPU) (October 2015 CPU)
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(85539);
      script_version("1.11");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/03");
    
      script_cve_id(
        "CVE-2015-2582",
        "CVE-2015-2611",
        "CVE-2015-2617",
        "CVE-2015-2639",
        "CVE-2015-2641",
        "CVE-2015-2643",
        "CVE-2015-2648",
        "CVE-2015-2661",
        "CVE-2015-4752",
        "CVE-2015-4761",
        "CVE-2015-4767",
        "CVE-2015-4769",
        "CVE-2015-4771",
        "CVE-2015-4772",
        "CVE-2015-4864"
      );
      script_bugtraq_id(
        75751,
        75753,
        75760,
        75762,
        75770,
        75774,
        75781,
        75813,
        75815,
        75822,
        75830,
        75835,
        75844,
        75849,
        77187
      );
    
      script_name(english:"Oracle MySQL 5.6.x < 5.6.25 Multiple Vulnerabilities (July 2015 CPU) (October 2015 CPU)");
      script_summary(english:"Checks the rpm output for the updated packages.");
    
      script_set_attribute(attribute:"synopsis", value:
    "The remote host is missing one or more security updates.");
      script_set_attribute(attribute:"description", value:
    "The version of Oracle MySQL installed on the remote host is 5.6.x
    prior to 5.6.25. It is, therefore, affected by the following
    vulnerabilities :
    
      - Multiple denial of service vulnerabilities exist in the
        following subcomponents which can be exploited by a
        remote, authenticated attacker :
        - Partition (CVE-2015-2617)
        - DML (CVE-2015-2648, CVE-2015-2611)
        - GIS (CVE-2015-2582)
        - I_S (CVE-2015-4752)
        - Optimizer (CVE-2015-2643)
        - Partition (CVE-2015-4772)
        - Memcached (CVE-2015-4761)
        - RBR (CVE-2015-4771)
        - Security:Firewall (CVE-2015-4769, CVE-2015-4767)
        - Security:Privileges (CVE-2015-2641)
    
      - An unspecified vulnerability exists related to the
        Security:Firewall subcomponent that can be exploited by
        an authenticated, remote attacker to have an impact on
        the integrity of the system. (CVE-2015-2639)
    
      - A denial of service vulnerability exists in the Client
        subcomponent which can be exploited by a local attacker.
        (CVE-2015-2661)
    
      - An unspecified flaw exists in the Security:Privileges
        subcomponent. An authenticated, remote attacker can
        exploit this to impact integrity. (CVE-2015-4864)");
      # https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/2368792.xml
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?178c8ed1");
      # https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/2368795.xml
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1de82df5");
      script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html");
      script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/epmos/faces/DocumentDisplay?id=2024204.1");
      script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/epmos/faces/DocumentDisplay?id=2048227.1");
      # http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d18c2a85");
      # http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?75a4a4fb");
      script_set_attribute(attribute:"solution", value:
    "Apply the appropriate patch according to the July 2015 and October
    2015 Oracle Critical Patch Update advisories.");
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-2641");
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
      script_set_attribute(attribute:"exploit_available", value:"false");
    
      script_set_attribute(attribute:"agent", value:"unix");
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:mysql");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:mysql");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2015/07/14");
      script_set_attribute(attribute:"patch_publication_date", value:"2015/07/14");
      script_set_attribute(attribute:"plugin_publication_date", value:"2015/08/19");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.");
      script_family(english:"Databases");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled");
      script_require_ports("Host/RedHat/release", "Host/AmazonLinux/release", "Host/SuSE/release", "Host/CentOS/release");
      exit(0);
    }
    
    include("mysql_version.inc");
    
    package_list = make_list(
      "mysql-community-client",
      "mysql-community-common",
      "mysql-community-devel",
      "mysql-community-embedded",
      "mysql-community-libs",
      "mysql-community-libs-compat",
      "mysql-community-server",
      "MySQL-client",
      "MySQL-client-advanced",
      "MySQL-devel",
      "MySQL-devel-advanced",
      "MySQL-shared",
      "MySQL-shared-advanced",
      "MySQL-shared-compat",
      "MySQL-shared-compat-advanced",
      "MySQL-server",
      "MySQL-server-advanced"
    );
    rhel_list = make_list(
      "EL5",
      "EL6",
      "EL7",
      "FC20",
      "FC21",
      "FC22",
      "FC23",
      "RHEL5",
      "RHEL6",
      "RHEL7",
      "SL5",
      "SL6",
      "SL7"
    );
    ala_list = make_list(
      "ALA"
    );
    suse_list = make_list(
      "SLED11",
      "SLED12",
      "SLES11",
      "SLES12",
      "SUSE13.1",
      "SUSE13.2"
    );
    centos_list = make_list(
      "CentOS-5",
      "CentOS-6",
      "CentOS-7"
    );
    
    fix_version = "5.6.25";
    exists_version = "5.6";
    
    mysql_check_rpms(mysql_packages:package_list, fix_ver:fix_version, exists_ver:exists_version, rhel_os_list:rhel_list, centos_os_list:centos_list, suse_os_list:suse_list, ala_os_list:ala_list, severity:SECURITY_WARNING);
    
  • NASL familyDatabases
    NASL idMYSQL_5_6_25.NASL
    descriptionThe version of MySQL running on the remote host is version 5.5.x prior to 5.5.44 or version 5.6.x prior to 5.6.25. It is, therefore, potentially affected by the following vulnerabilities : - Multiple denial of service vulnerabilities exist in the following Server subcomponents which can be exploited by a remote, authenticated attacker : - Partition (CVE-2015-2617) - DML (CVE-2015-2648, CVE-2015-2611) - GIS (CVE-2015-2582) - I_S (CVE-2015-4752) - InnoDB (CVE-2015-4756) - Optimizer (CVE-2015-2643, CVE-2015-4757) - Partition (CVE-2015-4772) - Memcached (CVE-2015-4761) - RBR (CVE-2015-4771) - Security:Firewall (CVE-2015-4769, CVE-2015-4767) - Security:Privileges (CVE-2015-2641) - Multiple Information disclosure vulnerabilities exist in the following Server subcomponents which can be exploited by a remote, authenticated attacker to gain access to sensitive information : - Pluggable Auth (CVE-2015-4737) - Security:Privileges (CVE-2015-2620) - An unspecified vulnerability exists related to the Security:Firewall subcomponent of the Server that can be exploited by a remote, authenticated attacker to have an impact on the integrity of the system. (CVE-2015-2639) - A denial of service vulnerability exists in the Client subcomponent which can be exploited by a local attacker. No other details have been given. (CVE-2015-2661)
    last seen2020-06-01
    modified2020-06-02
    plugin id84767
    published2015-07-15
    reporterThis script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/84767
    titleMySQL 5.5.x < 5.5.44 / 5.6.x < 5.6.25 Multiple Vulnerabilities (July 2015 CPU)
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(84767);
      script_version("1.12");
      script_cvs_date("Date: 2019/03/27 13:17:50");
    
      script_cve_id(
        "CVE-2015-2582",
        "CVE-2015-2611",
        "CVE-2015-2617",
        "CVE-2015-2620",
        "CVE-2015-2639",
        "CVE-2015-2641",
        "CVE-2015-2643",
        "CVE-2015-2648",
        "CVE-2015-2661",
        "CVE-2015-4737",
        "CVE-2015-4752",
        "CVE-2015-4756",
        "CVE-2015-4757",
        "CVE-2015-4761",
        "CVE-2015-4767",
        "CVE-2015-4769",
        "CVE-2015-4771",
        "CVE-2015-4772");
    
      script_bugtraq_id(
        75751,
        75753,
        75759,
        75760,
        75762,
        75770,
        75774,
        75781,
        75785,
        75802,
        75813,
        75815,
        75822,
        75830,
        75835,
        75837,
        75844,
        75849
      );
    
      script_name(english:"MySQL 5.5.x < 5.5.44 / 5.6.x < 5.6.25 Multiple Vulnerabilities (July 2015 CPU)");
      script_summary(english:"Checks the version of MySQL server.");
    
      script_set_attribute(attribute:"synopsis", value:
    "The remote database server is affected by multiple vulnerabilities.");
      script_set_attribute(attribute:"description", value:
    "The version of MySQL running on the remote host is version 5.5.x
    prior to 5.5.44 or version 5.6.x prior to 5.6.25. It is, therefore,
    potentially affected by the following vulnerabilities :
    
      - Multiple denial of service vulnerabilities exist in the
        following Server subcomponents which can be exploited by
        a remote, authenticated attacker :
        - Partition (CVE-2015-2617)
        - DML (CVE-2015-2648, CVE-2015-2611)
        - GIS (CVE-2015-2582)
        - I_S (CVE-2015-4752)
        - InnoDB (CVE-2015-4756)
        - Optimizer (CVE-2015-2643, CVE-2015-4757)
        - Partition (CVE-2015-4772)
        - Memcached (CVE-2015-4761)
        - RBR (CVE-2015-4771)
        - Security:Firewall (CVE-2015-4769, CVE-2015-4767)
        - Security:Privileges (CVE-2015-2641)
    
      - Multiple Information disclosure vulnerabilities exist in
        the following Server subcomponents which can be
        exploited by a remote, authenticated attacker to gain
        access to sensitive information :
        - Pluggable Auth (CVE-2015-4737)
        - Security:Privileges (CVE-2015-2620)
    
      - An unspecified vulnerability exists related to the
        Security:Firewall subcomponent of the Server that can be
        exploited by a remote, authenticated attacker to have an
        impact on the integrity of the system. (CVE-2015-2639)
    
      - A denial of service vulnerability exists in the Client
        subcomponent which can be exploited by a local attacker.
        No other details have been given. (CVE-2015-2661)");
      # http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d18c2a85");
      script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.5/en/");
      script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/");
      script_set_attribute(attribute:"solution", value:
    "Apply the appropriate patch according to the July 2015 Oracle
    Critical Patch Update advisory.");
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
      script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-2617");
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
      script_set_attribute(attribute:"exploit_available", value:"false");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2015/07/14");
      script_set_attribute(attribute:"patch_publication_date", value:"2015/07/14");
      script_set_attribute(attribute:"plugin_publication_date", value:"2015/07/15");
    
      script_set_attribute(attribute:"potential_vulnerability", value:"true");
      script_set_attribute(attribute:"plugin_type", value:"remote");
      script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_family(english:"Databases");
    
      script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
    
      script_dependencies("mysql_version.nasl", "mysql_login.nasl");
      script_require_keys("Settings/ParanoidReport");
      script_require_ports("Services/mysql", 3306);
    
      exit(0);
    }
    
    include("mysql_version.inc");
    
    mysql_check_version(fixed:make_list('5.5.44', '5.6.25'), severity:SECURITY_WARNING);
    
  • NASL familyGentoo Local Security Checks
    NASL idGENTOO_GLSA-201610-06.NASL
    descriptionThe remote host is affected by the vulnerability described in GLSA-201610-06 (MySQL and MariaDB: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in MySQL and MariaDB. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could exploit vulnerabilities, through multiple vectors, that affect the confidentiality, integrity, and availability of MySQL and MariaDB. Workaround : There is no known workaround at this time.
    last seen2020-06-01
    modified2020-06-02
    plugin id93993
    published2016-10-12
    reporterThis script is Copyright (C) 2016 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/93993
    titleGLSA-201610-06 : MySQL and MariaDB: Multiple vulnerabilities
  • NASL familySuSE Local Security Checks
    NASL idSUSE_SU-2015-1788-1.NASL
    descriptionMySQL was updated to version 5.5.45, fixing bugs and security issues. A list of all changes can be found on : - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-45.html - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html To fix the
    last seen2020-06-01
    modified2020-06-02
    plugin id86537
    published2015-10-22
    reporterThis script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/86537
    titleSUSE SLED11 / SLES11 Security Update : mysql (SUSE-SU-2015:1788-1) (BACKRONYM)
  • NASL familyUbuntu Local Security Checks
    NASL idUBUNTU_USN-2674-1.NASL
    descriptionMultiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 5.5.44 in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 14.10. Ubuntu 15.04 has been updated to MySQL 5.6.25. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.h tml. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id84915
    published2015-07-22
    reporterUbuntu Security Notice (C) 2015-2019 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/84915
    titleUbuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : mysql-5.5, mysql-5.6 vulnerabilities (USN-2674-1)

Redhat

advisories
  • rhsa
    idRHSA-2015:1630
  • rhsa
    idRHSA-2015:1646
rpms
  • rh-mysql56-mysql-0:5.6.26-1.el6
  • rh-mysql56-mysql-0:5.6.26-1.el7
  • rh-mysql56-mysql-bench-0:5.6.26-1.el6
  • rh-mysql56-mysql-bench-0:5.6.26-1.el7
  • rh-mysql56-mysql-common-0:5.6.26-1.el6
  • rh-mysql56-mysql-common-0:5.6.26-1.el7
  • rh-mysql56-mysql-config-0:5.6.26-1.el6
  • rh-mysql56-mysql-config-0:5.6.26-1.el7
  • rh-mysql56-mysql-debuginfo-0:5.6.26-1.el6
  • rh-mysql56-mysql-debuginfo-0:5.6.26-1.el7
  • rh-mysql56-mysql-devel-0:5.6.26-1.el6
  • rh-mysql56-mysql-devel-0:5.6.26-1.el7
  • rh-mysql56-mysql-errmsg-0:5.6.26-1.el6
  • rh-mysql56-mysql-errmsg-0:5.6.26-1.el7
  • rh-mysql56-mysql-server-0:5.6.26-1.el6
  • rh-mysql56-mysql-server-0:5.6.26-1.el7
  • rh-mysql56-mysql-test-0:5.6.26-1.el6
  • rh-mysql56-mysql-test-0:5.6.26-1.el7
  • rh-mariadb100-mariadb-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-bench-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-bench-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-common-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-common-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-config-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-config-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-debuginfo-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-debuginfo-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-devel-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-devel-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-errmsg-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-errmsg-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-oqgraph-engine-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-oqgraph-engine-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-server-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-server-1:10.0.20-1.el7
  • rh-mariadb100-mariadb-test-1:10.0.20-1.el6
  • rh-mariadb100-mariadb-test-1:10.0.20-1.el7