rpm package

suse/mysql&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/mysql&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (137)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-2622		—	< 5.5.59-0.39.9.8	5.5.59-0.39.9.8	Jan 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2018-2562		—	< 5.5.59-0.39.9.8	5.5.59-0.39.9.8	Jan 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access vi
CVE-2017-10384	Med	6.5	< 5.5.58-0.39.6.1	5.5.58-0.39.6.1	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2017-10379	Med	6.5	< 5.5.58-0.39.6.1	5.5.58-0.39.6.1	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access
CVE-2017-10378	Med	6.5	< 5.5.58-0.39.6.1	5.5.58-0.39.6.1	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acce
CVE-2017-10268	Med	4.1	< 5.5.58-0.39.6.1	5.5.58-0.39.6.1	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon t
CVE-2017-3653	Low	3.1	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3652	Med	4.2	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3651	Med	4.3	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acces
CVE-2017-3648	Med	4.4	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network ac
CVE-2017-3641	Med	4.9	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636	Med	5.3	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3635	Med	5.3	< 5.5.57-0.39.3.1	5.5.57-0.39.3.1	Aug 8, 2017	Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MyS
CVE-2016-9843	Cri	9.8	< 5.5.62-0.39.18.1	5.5.62-0.39.18.1	May 23, 2017	The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
CVE-2017-3600	Med	6.6	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network ac
CVE-2017-3464	Med	4.3	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3463	Med	4.9	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3462	Med	4.9	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3461	Med	4.9	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3456	Med	4.9	< 5.5.55-0.38.1	5.5.55-0.38.1	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access

CVE-2018-2622Jan 18, 2018
affected < 5.5.59-0.39.9.8fixed 5.5.59-0.39.9.8
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2018-2562Jan 18, 2018
affected < 5.5.59-0.39.9.8fixed 5.5.59-0.39.9.8
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access vi
CVE-2017-10384MedOct 19, 2017
affected < 5.5.58-0.39.6.1fixed 5.5.58-0.39.6.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2017-10379MedOct 19, 2017
affected < 5.5.58-0.39.6.1fixed 5.5.58-0.39.6.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access
CVE-2017-10378MedOct 19, 2017
affected < 5.5.58-0.39.6.1fixed 5.5.58-0.39.6.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acce
CVE-2017-10268MedOct 19, 2017
affected < 5.5.58-0.39.6.1fixed 5.5.58-0.39.6.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon t
CVE-2017-3653LowAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3652MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3651MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acces
CVE-2017-3648MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network ac
CVE-2017-3641MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3635MedAug 8, 2017
affected < 5.5.57-0.39.3.1fixed 5.5.57-0.39.3.1
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MyS
CVE-2016-9843CriMay 23, 2017
affected < 5.5.62-0.39.18.1fixed 5.5.62-0.39.18.1
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
CVE-2017-3600MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network ac
CVE-2017-3464MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3463MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3462MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3461MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker wit
CVE-2017-3456MedApr 24, 2017
affected < 5.5.55-0.38.1fixed 5.5.55-0.38.1
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access

Page 2 of 7