1244776 – (CVE-2015-2661) CVE-2015-2661 mysql: unspecified vulnerability related to Client (CPU July 2015)

Bug 1244776 (CVE-2015-2661) - CVE-2015-2661 mysql: unspecified vulnerability related to Client (CPU July 2015)

Summary: CVE-2015-2661 mysql: unspecified vulnerability related to Client (CPU July 2015)

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2015-2661
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1247025 1247026 1247029 1247030
Blocks:	1244788
TreeView+	depends on / blocked

Reported:	2015-07-20 13:02 UTC by Martin Prpič
Modified:	2021-02-17 05:06 UTC (History)
CC List:	27 users (show)
Fixed In Version:	mysql 5.6.25
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-06-08 02:42:29 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2015:1630	0	normal	SHIPPED_LIVE	Important: rh-mysql56-mysql security update	2015-08-17 10:29:05 UTC
Red Hat Product Errata	RHSA-2015:1646	0	normal	SHIPPED_LIVE	Important: rh-mariadb100-mariadb security update	2015-08-20 12:48:37 UTC

Description Martin Prpič 2015-07-20 13:02:14 UTC

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client). Supported versions that are affected are 5.6.24 and earlier. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server.

External References:

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixMSQL
http://www.oracle.com/technetwork/topics/security/cpujul2015verbose-2367947.html#MSQL

Comment 3 errata-xmlrpc 2015-08-17 06:29:53 UTC

This issue has been addressed in the following products:

  Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS
  Red Hat Software Collections for Red Hat Enterprise Linux 7
  Red Hat Software Collections for Red Hat Enterprise Linux 6
  Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS
  Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS

Via RHSA-2015:1630 https://rhn.redhat.com/errata/RHSA-2015-1630.html

Comment 4 errata-xmlrpc 2015-08-20 08:49:28 UTC

This issue has been addressed in the following products:

  Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS
  Red Hat Software Collections for Red Hat Enterprise Linux 7
  Red Hat Software Collections for Red Hat Enterprise Linux 6
  Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS
  Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS

Via RHSA-2015:1646 https://rhn.redhat.com/errata/RHSA-2015-1646.html

Note You need to log in before you can comment on or make changes to this bug.

abaron
apevec
ayoung
byte
chrisw
dallan
databases-maint
dciabrin
gkotton
hhorak
jjoyce
jorton
jschluet
jstanek
kbasil
lhh
lpeer
markmc
mbayer
mburns
mmaslano
mmuzila
rbryant
sclewis
slinaber
srevivo
tdecacqu