Back to bug 1378936
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Tomas Hoger | 2016-09-23 14:35:22 UTC | Blocks | 1375204 | |
| Clifford Perry | 2016-10-07 08:42:27 UTC | CC | cperry | |
| Chris Robinson | 2016-10-13 17:35:01 UTC | CC | crrobins | |
| Jason Shepherd | 2016-10-18 00:35:53 UTC | Whiteboard | impact=important,public=20160912,reported=20160912,source=internet,rhel-5/mysql=new,rhel-5/mysql55-mysql=new,rhel-6/mysql=new,rhel-7/mariadb=new,rhscl-2/mysql55-mysql=new,rhscl-2/rh-mysql56-mysql=new,rhscl-2/mariadb55-mariadb=new,rhscl-2/rh-mariadb100-mariadb=new,rhscl-2/rh-mariadb101-mariadb=new,openstack-5/mariadb-galera=new,openstack-6/mariadb-galera=new,openstack-7/mariadb-galera=new,openstack-8/mariadb-galera=new,openstack-9/mariadb-galera=new,fedora-all/community-mysql=new,fedora-all/mariadb=new,fedora-all/mariadb-galera=new | impact=important,public=20160912,reported=20160912,source=internet,rhel-5/mysql=new,rhel-5/mysql55-mysql=new,rhel-6/mysql=new,rhel-7/mariadb=new,rhscl-2/mysql55-mysql=new,rhscl-2/rh-mysql56-mysql=new,rhscl-2/mariadb55-mariadb=new,rhscl-2/rh-mariadb100-mariadb=new,rhscl-2/rh-mariadb101-mariadb=new,openstack-5/mariadb-galera=new,openstack-6/mariadb-galera=new,openstack-7/mariadb-galera=new,openstack-8/mariadb-galera=new,openstack-9/mariadb-galera=new,fedora-all/community-mysql=new,fedora-all/mariadb=new,fedora-all/mariadb-galera=new,rhmap-4/millicore=new |
| Jason Shepherd | 2016-10-18 00:36:06 UTC | CC | avibelli, coneill, gsterlin, jbalunas, jshepherd, rrajasek, tjay, tkirby | |
| Salvatore Bonaccorso | 2016-10-18 18:51:35 UTC | CC | carnil | |
| Andrej Nemec | 2016-10-19 12:33:56 UTC | CC | anemec | |
| Tomas Hoger | 2016-10-25 07:57:12 UTC | Priority | high | medium |
| Fixed In Version | mysql 5.5.52, mysql 5.6.33, mysql 5.7.15, mariadb 5.5.52, mariadb 10.1.18 | |||
| Summary | CVE-2016-6663 mysql: unspecified privilege escalation issue | CVE-2016-6663 mysql: race condition while setting stats during MyISAM table repair | ||
| Whiteboard | impact=important,public=20160912,reported=20160912,source=internet,rhel-5/mysql=new,rhel-5/mysql55-mysql=new,rhel-6/mysql=new,rhel-7/mariadb=new,rhscl-2/mysql55-mysql=new,rhscl-2/rh-mysql56-mysql=new,rhscl-2/mariadb55-mariadb=new,rhscl-2/rh-mariadb100-mariadb=new,rhscl-2/rh-mariadb101-mariadb=new,openstack-5/mariadb-galera=new,openstack-6/mariadb-galera=new,openstack-7/mariadb-galera=new,openstack-8/mariadb-galera=new,openstack-9/mariadb-galera=new,fedora-all/community-mysql=new,fedora-all/mariadb=new,fedora-all/mariadb-galera=new,rhmap-4/millicore=new | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.4/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new | ||
| Severity | high | medium | ||
| Tomas Hoger | 2016-10-25 09:05:04 UTC | Doc Text | A race condition was found in the way MySQL performed MyISAM engine table repair. A database user with shell access to the server running mysqld could use this flaw to change permissions of arbitrary file writeable to the mysql system user. | |
| Andrej Nemec | 2016-10-26 07:11:15 UTC | Whiteboard | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.4/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new |
| Eric Christensen | 2016-10-26 17:30:09 UTC | Doc Text | A race condition was found in the way MySQL performed MyISAM engine table repair. A database user with shell access to the server running mysqld could use this flaw to change permissions of arbitrary file writeable to the mysql system user. | A race condition was found in the way MySQL performed MyISAM engine table repair. A database user with shell access to the server running mysqld could use this flaw to change permissions of arbitrary files writable by the mysql system user. |
| Tomas Hoger | 2016-11-03 21:49:48 UTC | Blocks | 1386598 | |
| CC | amaris | |||
| Tomas Hoger | 2016-11-03 21:51:40 UTC | Summary | CVE-2016-6663 mysql: race condition while setting stats during MyISAM table repair | CVE-2016-6663 CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair |
| Alias | CVE-2016-5616 | |||
| Tomas Hoger | 2016-11-07 12:47:00 UTC | Fixed In Version | mysql 5.5.52, mysql 5.6.33, mysql 5.7.15, mariadb 5.5.52, mariadb 10.1.18 | mysql 5.5.52, mysql 5.6.33, mysql 5.7.15, mariadb 5.5.52, mariadb 10.1.18, mariadb 10.0.28 |
| Norman Sardella | 2016-11-07 19:55:29 UTC | CC | sardella | |
| Tomas Hoger | 2016-11-08 13:02:34 UTC | Summary | CVE-2016-6663 CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair | CVE-2016-6663 CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair (CPU Oct 2016) |
| Adam Mariš | 2016-11-08 16:08:02 UTC | CC | amaris | |
| Craig Donnelly | 2016-11-08 18:32:14 UTC | CC | cdonnell, xdmoon | |
| Flags | needinfo?(xdmoon) | |||
| Xixi | 2016-11-08 19:33:08 UTC | Flags | needinfo?(xdmoon) | |
| Tomas Hoger | 2016-11-09 10:03:59 UTC | Depends On | 1393306 | |
| Tomas Hoger | 2016-11-09 10:04:08 UTC | Depends On | 1393307 | |
| Tomas Hoger | 2016-11-09 10:04:15 UTC | Depends On | 1393308 | |
| Tomas Hoger | 2016-11-09 10:04:22 UTC | Depends On | 1393309 | |
| Tomas Hoger | 2016-11-09 10:08:44 UTC | Depends On | 1393307 | |
| Tomas Hoger | 2016-11-09 10:09:01 UTC | Depends On | 1393308 | |
| Tomas Hoger | 2016-11-09 10:14:26 UTC | Depends On | 1393313 | |
| Tomas Hoger | 2016-11-09 10:14:42 UTC | Depends On | 1393314 | |
| Tomas Hoger | 2016-11-22 09:32:59 UTC | Whiteboard | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new |
| Tomas Hoger | 2016-11-22 09:33:21 UTC | Depends On | 1397309 | |
| Tomas Hoger | 2016-11-22 09:33:49 UTC | Depends On | 1397310 | |
| John Skeoch | 2016-12-01 01:00:36 UTC | CC | jdornak | |
| Adam Mariš | 2017-03-07 15:25:03 UTC | Depends On | 1429974, 1429975 | |
| PnT Account Manager | 2018-01-30 03:14:08 UTC | CC | coneill | |
| PnT Account Manager | 2018-01-31 00:03:28 UTC | CC | aortega | |
| PnT Account Manager | 2018-03-19 01:03:53 UTC | CC | xdmoon | |
| Joshua Padman | 2018-04-06 12:04:14 UTC | CC | jjoyce, mburns, slinaber | |
| Summary | CVE-2016-6663 CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair (CPU Oct 2016) | CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair (CPU Oct 2016) | ||
| Whiteboard | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=notaffected,openstack-6/mariadb-galera=notaffected,openstack-7/mariadb-galera=notaffected,openstack-8/mariadb-galera=notaffected,openstack-9/mariadb-galera=notaffected,openstack-10/mariadb-galera=notaffected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new,openstack-11/mariadb-galera=notaffected,openstack-12/mariadb-galera=notaffected | ||
| Joshua Padman | 2018-04-06 12:06:58 UTC | Summary | CVE-2016-5616 mysql: race condition while setting stats during MyISAM table repair (CPU Oct 2016) | CVE-2016-5616 CVE-2016-6663 mysql: race condition while setting stats during MyISAM table repair (CPU Oct 2016) |
| Whiteboard | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=notaffected,openstack-6/mariadb-galera=notaffected,openstack-7/mariadb-galera=notaffected,openstack-8/mariadb-galera=notaffected,openstack-9/mariadb-galera=notaffected,openstack-10/mariadb-galera=notaffected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new,openstack-11/mariadb-galera=notaffected,openstack-12/mariadb-galera=notaffected | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=wontfix,openstack-6/mariadb-galera=wontfix,openstack-7/mariadb-galera=wontfix,openstack-8/mariadb-galera=wontfix,openstack-9/mariadb-galera=wontfix,openstack-10/mariadb-galera=wontfix,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new,openstack-11/mariadb-galera=wontfix,openstack-12/mariadb-galera=wontfix | ||
| PnT Account Manager | 2019-04-22 21:31:16 UTC | CC | tjay | |
| PnT Account Manager | 2019-05-02 21:51:53 UTC | CC | anemec | |
| Product Security DevOps Team | 2019-06-08 02:59:03 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:59:03 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:57:05 UTC | Whiteboard | impact=moderate,public=20160912,reported=20160912,source=internet,cvss2=3.5/AV:L/AC:H/Au:S/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-362,rhel-5/mysql=wontfix,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=affected,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=wontfix,openstack-6/mariadb-galera=wontfix,openstack-7/mariadb-galera=wontfix,openstack-8/mariadb-galera=wontfix,openstack-9/mariadb-galera=wontfix,openstack-10/mariadb-galera=wontfix,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,rhmap-4/millicore=new,openstack-11/mariadb-galera=wontfix,openstack-12/mariadb-galera=wontfix |
Back to bug 1378936