Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Federated). Supported versions that are affected are 5.5.42 and earlier and 5.6.23 and earlier. Difficult to exploit vulnerability allows successful authenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. External References: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL
This issue was addressed in mysql-5.5 in Fedora 20 via the following security advisory: https://admin.fedoraproject.org/updates/community-mysql-5.5.43-1.fc20 This issue was addressed in mysql-5.6 in Fedora 21 via the following security advisory: https://admin.fedoraproject.org/updates/community-mysql-5.6.24-1.fc21
Statement: This issue affects the versions of mysql and mysql55 packages as shipped with Red Hat Enterprise Linux 5, 6 and 7. This issue affects the version of mariadb and mariadb55 packages as shipped with Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this issue as having Moderate security impact, a future update may address this flaw.
This issue has been fixed in mariadb-10.0.18 as per the release notes at: https://mariadb.com/kb/en/mariadb/mariadb-10018-release-notes/
This issue has been addressed in the following products: Red Hat Enterprise Linux 5 Via RHSA-2015:1628 https://rhn.redhat.com/errata/RHSA-2015-1628.html
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 6 Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS Via RHSA-2015:1629 https://rhn.redhat.com/errata/RHSA-2015-1629.html
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 6 Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS Via RHSA-2015:1647 https://rhn.redhat.com/errata/RHSA-2015-1647.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2015:1665 https://rhn.redhat.com/errata/RHSA-2015-1665.html