rpm package

suse/rubygem-mysql2&distro=SUSE OpenStack Cloud 7

pkg:rpm/suse/rubygem-mysql2&distro=SUSE%20OpenStack%20Cloud%207

Vulnerabilities (41)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-2622		—	< 0.4.10-7.2	0.4.10-7.2	Jan 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2018-2612		—	< 0.4.10-7.2	0.4.10-7.2	Jan 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compr
CVE-2018-2562		—	< 0.4.10-7.2	0.4.10-7.2	Jan 18, 2018	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access vi
CVE-2017-10384	Med	6.5	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2017-10379	Med	6.5	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access
CVE-2017-10378	Med	6.5	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acce
CVE-2017-10365	Low	3.8	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL
CVE-2017-10320	Med	4.9	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL
CVE-2017-10286	Med	4.4	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple prot
CVE-2017-10268	Med	4.1	< 0.4.10-7.2	0.4.10-7.2	Oct 19, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon t
CVE-2017-3653	Low	3.1	< 0.4.10-7.2	0.4.10-7.2	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3641	Med	4.9	< 0.4.10-7.2	0.4.10-7.2	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636	Med	5.3	< 0.4.10-7.2	0.4.10-7.2	Aug 8, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3464	Med	4.3	< 0.4.10-7.2	0.4.10-7.2	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3456	Med	4.9	< 0.4.10-7.2	0.4.10-7.2	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access
CVE-2017-3453	Med	6.5	< 0.4.10-7.2	0.4.10-7.2	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3309	Hig	7.7	< 0.4.10-7.2	0.4.10-7.2	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3308	Hig	7.7	< 0.4.10-7.2	0.4.10-7.2	Apr 24, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3302	Hig	7.5	< 0.4.10-7.2	0.4.10-7.2	Feb 12, 2017	Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
CVE-2017-3313	Med	4.7	< 0.4.10-7.2	0.4.10-7.2	Jan 27, 2017	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the

CVE-2018-2622Jan 18, 2018
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multi
CVE-2018-2612Jan 18, 2018
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compr
CVE-2018-2562Jan 18, 2018
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access vi
CVE-2017-10384MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via mult
CVE-2017-10379MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access
CVE-2017-10378MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network acce
CVE-2017-10365LowOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL
CVE-2017-10320MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL
CVE-2017-10286MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple prot
CVE-2017-10268MedOct 19, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon t
CVE-2017-3653LowAug 8, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access v
CVE-2017-3641MedAug 8, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access vi
CVE-2017-3636MedAug 8, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where
CVE-2017-3464MedApr 24, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3456MedApr 24, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access
CVE-2017-3453MedApr 24, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3309HigApr 24, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network ac
CVE-2017-3308HigApr 24, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access v
CVE-2017-3302HigFeb 12, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
CVE-2017-3313MedJan 27, 2017
affected < 0.4.10-7.2fixed 0.4.10-7.2
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the

Page 2 of 3