CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2016-0649 – mysql: unspecified vulnerability in subcomponent: Server: PS (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0649
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to PS. Vulnerabilidad no especificada en Oracle MySQL 5.5.47 y versiones anteriores, 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores y MariaDB en versiones anteriores a 5.5.48, 10.0.x en versiones anteriores a 10.0.24 y 10.1.x en versiones anteriores a 10... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •
CVSS: 4.0EPSS: 0%CPEs: 12EXPL: 0CVE-2016-0643 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0643
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. Vulnerabilidad no especificada en Oracle MySQL 5.5.48 y versiones anteriores, 5.6.29 y versiones anteriores y 5.7.11 y versiones anteriores y MariaDB en versiones anteriores a 5.5.49, 10.0.x en versiones anteriores a 10.0.25 y 10.1.x en versiones anteriores ... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •
CVSS: 4.7EPSS: 0%CPEs: 7EXPL: 0CVE-2016-0661 – mysql: unspecified vulnerability in subcomponent: Server: Options (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0661
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Options. Vulnerabilidad no especificada en Oracle MySQL 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores permite a usuarios locales afectar a la disponibilidad a través de vectores relacionados con Options. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been upda... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2016-0644 – mysql: unspecified vulnerability in subcomponent: Server: DDL (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0644
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DDL. Vulnerabilidad no especificada en Oracle MySQL 5.5.47 y versiones anteriores, 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores y MariaDB en versiones anteriores a 5.5.48, 10.0.x en versiones anteriores a 10.0.24 y 10.1.x en versiones anteriores a 1... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2016-0646 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0646
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DML. Vulnerabilidad no especificada en Oracle MySQL 5.5.47 y versiones anteriores, 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores y MariaDB en versiones anteriores a 5.5.48, 10.0.x en versiones anteriores a 10.0.24 y 10.1.x en versiones anteriores a 1... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2016-0648 – mysql: unspecified vulnerability in subcomponent: Server: PS (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0648
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. Vulnerabilidad no especificada en Oracle MySQL 5.5.48 y versiones anteriores, 5.6.29 y versiones anteriores y 5.7.11 y versiones anteriores y MariaDB en versiones anteriores a 5.5.49, 10.0.x en versiones anteriores a 10.0.25 y 10.1.x en versiones anteriores a 10... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html •
CVSS: 4.7EPSS: 0%CPEs: 8EXPL: 0CVE-2016-0655 – mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0655
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to InnoDB. Vulnerabilidad no especificada en Oracle MySQL 5.6.29 y versiones anteriores y 5.7.11 y versiones anteriores y MariaDB 10.0.x en versiones anteriores a 10.0.25 y 10.1.x en versiones anteriores a 10.1.14 permite a usuarios locales afectar la disponibilidad a través de vectores relacionados con I... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2016-0665 – mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU April 2016)
https://notcve.org/view.php?id=CVE-2016-0665
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Security: Encryption. Vulnerabilidad no especificada en Oracle MySQL 5.6.28 y versiones anteriores y 5.7.10 y versiones anteriores permite a usuarios locales afectar a la disponibilidad a través de vectores relacionados con Security: Encryption. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these i... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html •
CVSS: 8.4EPSS: 0%CPEs: 35EXPL: 0CVE-2016-2857 – Qemu: net: out of bounds read in net_checksum_calculate()
https://notcve.org/view.php?id=CVE-2016-2857
08 Apr 2016 — The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet. La función net_checksum_calculate en net/checksum.c en QEMU permite a usuarios del SO invitado provocar una denegación de servicio (lectura de memoria dinámica fuera de rango y caída) a través de una longitud de la carga útil en un paquete manipulado. An out-of-bounds read-access flaw was found in the QEMU emula... • http://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=362786f14a753d8a5256ef97d7c10ed576d6572b • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 5.9EPSS: 1%CPEs: 16EXPL: 0CVE-2016-2047 – mysql: ssl-validate-cert incorrect hostname check
https://notcve.org/view.php?id=CVE-2016-2047
26 Jan 2016 — The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated ... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html • CWE-254: 7PK - Security Features CWE-295: Improper Certificate Validation •