CVE-2015-4807

EUVD-2015-4824
Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier, when running on Windows, allows remote authenticated users to affect availability via unknown vectors related to Server : Query Cache.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
oraclemysql
5.5.0 ≤
𝑥
≤ 5.5.45
oraclemysql
5.6.0 ≤
𝑥
≤ 5.6.26
oraclesolaris
11.3
opensuseleap
42.1
opensuseopensuse
13.1
opensuseopensuse
13.2
mariadbmariadb
5.5.0 ≤
𝑥
< 5.5.46
mariadbmariadb
10.0.0 ≤
𝑥
< 10.0.22
mariadbmariadb
10.1.0 ≤
𝑥
< 10.1.8
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mariadb-10.0
precise
dne
trusty
dne
vivid
not-affected
mariadb-5.5
precise
dne
trusty
dne
vivid
dne
mysql-5.5
precise
not-affected
trusty
not-affected
vivid
dne
mysql-5.6
precise
dne
trusty
dne
vivid
not-affected
percona-server-5.6
precise
dne
trusty
dne
vivid
not-affected
percona-xtradb-cluster-5.5
precise
dne
trusty
dne
vivid
dne
percona-xtradb-cluster-5.6
precise
dne
trusty
dne
vivid
not-affected
References
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html
http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.securityfocus.com/bid/77205
http://www.securitytracker.com/id/1033894
https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html
http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.securityfocus.com/bid/77205
http://www.securitytracker.com/id/1033894
https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html