Medium severity4.9NVD Advisory· Published Jul 21, 2016· Updated May 6, 2026

CVE-2016-5440

Description

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR.

Affected products

IBM/Powerkvm2 versions
cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:powerkvm:3.1:*:*:*:*:*:*:*
MariaDB/MariaDB
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Range: >=5.5.20,<5.5.50
Oracle Corporation/MySQL
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
Range: >=5.5.0,<=5.5.49
Canonical/Ubuntu Linux4 versions
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Debian/Debian Linux
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Oracle Corporation/Linux
cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Desktop
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Aus2 versions
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Eus5 versions
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Tus3 versions
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Workstation
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlnvdPatchVendor Advisory
lists.opensuse.org/opensuse-updates/2016-09/msg00042.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1480.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1601.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1602.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1603.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1604.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-1637.htmlnvdThird Party Advisory
www-01.ibm.com/support/docview.wssnvdThird Party Advisory
www.debian.org/security/2016/dsa-3624nvdThird Party Advisory
www.debian.org/security/2016/dsa-3632nvdThird Party Advisory
www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlnvdVendor Advisory
www.securityfocus.com/bid/91787nvdThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/91953nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1036362nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-3040-1nvdThird Party Advisory
mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/nvdVendor Advisory
mariadb.com/kb/en/mariadb/mariadb-10115-release-notes/nvdVendor Advisory
mariadb.com/kb/en/mariadb/mariadb-5550-release-notes/nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.319
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000