{ "threat_severity" : "Low", "public_date" : "2016-10-19T00:00:00Z", "bugzilla" : { "description" : "mysql: unspecified vulnerability in subcomponent: Server: InnoDB Plugin (CPU October 2016)", "id" : "1386590", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1386590" }, "cvss" : { "cvss_base_score" : "2.1", "cvss_scoring_vector" : "AV:N/AC:H/Au:S/C:N/I:P/A:N", "status" : "verified" }, "cvss3" : { "cvss3_base_score" : "3.1", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N", "status" : "verified" }, "details" : [ "Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin." ], "affected_release" : [ { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el6", "package" : "rh-mysql56-mysql-0:5.6.32-1.el6" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" }, { "product_name" : "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date" : "2016-08-11T00:00:00Z", "advisory" : "RHSA-2016:1601", "cpe" : "cpe:/a:redhat:rhel_software_collections:2::el7", "package" : "rh-mysql56-mysql-0:5.6.32-1.el7" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Not affected", "package_name" : "mysql55-mysql", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Not affected", "package_name" : "mysql", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "mariadb", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:5::el6" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 6 (Juno)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:6" }, { "product_name" : "Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:7" }, { "product_name" : "Red Hat OpenStack Platform 10 (Newton)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:10" }, { "product_name" : "Red Hat OpenStack Platform 11 (Ocata)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:11" }, { "product_name" : "Red Hat OpenStack Platform 12 (Pike)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:12" }, { "product_name" : "Red Hat OpenStack Platform 8 (Liberty)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:8" }, { "product_name" : "Red Hat OpenStack Platform 9 (Mitaka)", "fix_state" : "Not affected", "package_name" : "mariadb-galera", "cpe" : "cpe:/a:redhat:openstack:9" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "mariadb55-mariadb", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "mysql55-mysql", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-mariadb100-mariadb", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-mariadb101-mariadb", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-mysql57-mysql", "cpe" : "cpe:/a:redhat:rhel_software_collections:2" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2016-8288\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-8288\nhttp://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881724.html#AppendixMSQL" ], "name" : "CVE-2016-8288", "csaw" : false }