{ "threat_severity" : "Moderate", "public_date" : "2016-07-20T00:00:00Z", "bugzilla" : { "description" : "mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU July 2016)", "id" : "1358202", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1358202" }, "cvss" : { "cvss_base_score" : "4.0", "cvss_scoring_vector" : "AV:N/AC:L/Au:S/C:N/I:N/A:P", "status" : "verified" }, "cvss3" : { "cvss3_base_score" : "4.9", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "status" : "verified" }, "details" : [ "Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB." ], "affected_release" : [ { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date" : "2016-05-26T00:00:00Z", "advisory" : "RHSA-2016:1132", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mariadb100-mariadb-1:10.0.25-4.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Not affected", "package_name" : "mysql55-mysql", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Not affected", "package_name" : "mysql", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "mariadb", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:5::el6" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 6 (Juno)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:6" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:7" }, { "product_name" : "Red Hat OpenStack Platform 8 (Liberty)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:8" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "mariadb55-mariadb", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "mysql55-mysql", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-mariadb101-mariadb", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2016-3459\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-3459\nhttp://www.oracle.com/technetwork/topics/security/cpujul2016-2881720.html" ], "name" : "CVE-2016-3459", "csaw" : false }