42.1

DATE	CVE	VULNERABILITY TITLE	RISK
2015-11-02	CVE-2015-6031	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name. network miniupnp-project debian canonical opensuse CWE-119	6.8
2015-11-02	CVE-2015-5291	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a long hostname to the server name indication (SNI) extension, which is not properly handled when creating a ClientHello message. network arm polarssl debian fedoraproject opensuse CWE-119	6.8
2015-10-22	CVE-2015-4913	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858. network oracle opensuse redhat canonical debian fedoraproject mariadb	3.5
2015-10-21	CVE-2015-4870	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser. network low complexity oracle opensuse mariadb canonical debian redhat fedoraproject	4.0
2015-10-21	CVE-2015-4861	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB. network oracle opensuse redhat mariadb debian canonical fedoraproject	3.5
2015-10-21	CVE-2015-4858	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2015-4913. network low complexity oracle opensuse mariadb canonical debian redhat fedoraproject	4.0
2015-10-21	CVE-2015-4830	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges. network low complexity oracle mariadb canonical debian suse redhat opensuse fedoraproject	4.0
2015-10-21	CVE-2015-4826	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Types. network low complexity oracle opensuse mariadb canonical debian redhat fedoraproject	4.0
2015-10-21	CVE-2015-4815	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DDL. network low complexity oracle opensuse mariadb canonical debian redhat fedoraproject	4.0
2015-10-21	CVE-2015-4807	Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier, when running on Windows, allows remote authenticated users to affect availability via unknown vectors related to Server : Query Cache. network oracle opensuse mariadb fedoraproject	3.5