rpm package

suse/mariadb&distro=SUSE Linux Enterprise Server for SAP Applications 12

pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Vulnerabilities (126)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2015-2326		—	< 10.0.20-18.1	10.0.20-18.1	Jan 14, 2020	The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference,
CVE-2015-2325		—	< 10.0.20-18.1	10.0.20-18.1	Jan 14, 2020	The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward refere
CVE-2017-3653	Low	3.1	< 10.0.32-20.36.1	10.0.32-20.36.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3641	Med	4.9	< 10.0.32-20.36.1	10.0.32-20.36.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636	Med	5.3	< 10.0.32-20.36.1	10.0.32-20.36.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3464	Med	4.3	< 10.0.31-20.29.1	10.0.31-20.29.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3456	Med	4.9	< 10.0.31-20.29.1	10.0.31-20.29.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access
CVE-2017-3453	Med	6.5	< 10.0.31-20.29.1	10.0.31-20.29.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3309	Hig	7.7	< 10.0.31-20.29.1	10.0.31-20.29.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3308	Hig	7.7	< 10.0.31-20.29.1	10.0.31-20.29.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3302	Hig	7.5	< 10.0.30-20.26.1	10.0.30-20.26.1	Feb 12, 2017	Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
CVE-2017-3318	Med	4.0	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logo
CVE-2017-3317	Med	4.0	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infras
CVE-2017-3313	Med	4.7	< 10.0.30-20.26.1	10.0.30-20.26.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the
CVE-2017-3312	Med	6.7	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to t
CVE-2017-3291	Med	6.3	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to
CVE-2017-3265	Med	5.6	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to
CVE-2017-3258	Med	6.5	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via
CVE-2017-3257	Med	6.5	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.34 and earlier5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to
CVE-2017-3244	Med	6.5	< 10.0.29-20.23.1	10.0.29-20.23.1	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via

CVE-2015-2326Jan 14, 2020
affected < 10.0.20-18.1fixed 10.0.20-18.1
The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference,
CVE-2015-2325Jan 14, 2020
affected < 10.0.20-18.1fixed 10.0.20-18.1
The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward refere
CVE-2017-3653LowAug 8, 2017
affected < 10.0.32-20.36.1fixed 10.0.32-20.36.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3641MedAug 8, 2017
affected < 10.0.32-20.36.1fixed 10.0.32-20.36.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636MedAug 8, 2017
affected < 10.0.32-20.36.1fixed 10.0.32-20.36.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3464MedApr 24, 2017
affected < 10.0.31-20.29.1fixed 10.0.31-20.29.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3456MedApr 24, 2017
affected < 10.0.31-20.29.1fixed 10.0.31-20.29.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access
CVE-2017-3453MedApr 24, 2017
affected < 10.0.31-20.29.1fixed 10.0.31-20.29.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3309HigApr 24, 2017
affected < 10.0.31-20.29.1fixed 10.0.31-20.29.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3308HigApr 24, 2017
affected < 10.0.31-20.29.1fixed 10.0.31-20.29.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3302HigFeb 12, 2017
affected < 10.0.30-20.26.1fixed 10.0.30-20.26.1
Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
CVE-2017-3318MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logo
CVE-2017-3317MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infras
CVE-2017-3313MedJan 27, 2017
affected < 10.0.30-20.26.1fixed 10.0.30-20.26.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the
CVE-2017-3312MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to t
CVE-2017-3291MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to
CVE-2017-3265MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to
CVE-2017-3258MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via
CVE-2017-3257MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.34 and earlier5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to
CVE-2017-3244MedJan 27, 2017
affected < 10.0.29-20.23.1fixed 10.0.29-20.23.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via

Page 1 of 7