Local Availability Impact in Oracle MySQL and MariaDB Products
CVE-2016-0649

5.5MEDIUM

Key Information:

Vendor
IBM
Status
Powerkvm
Vendor
CVE Published:
21 April 2016

Summary

This vulnerability in Oracle MySQL and MariaDB allows local users to influence the availability of the database through unspecified vectors related to PS. The affected versions include several earlier releases of MySQL up to 5.7.10, and various MariaDB versions prior to specific release thresholds, potentially compromising database performance and system integrity.

References

http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2016-1481.html
vendor-advisoryx_refsource_REDHAT
https://mariadb.com/kb/en/mariadb/mariadb-5548-release-no...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.