CVE-2016-8318 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-8318 Interim 1 15 2023-12-09T01:13:01Z current 2021-05-30T13:46:38Z 2023-12-09T01:13:01Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-8318 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 6.8 (Availability impacts). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/P3A5PKAGB46Y2TQHJTZLZYDCRD3VWTST/#P3A5PKAGB46Y2TQHJTZLZYDCRD3VWTST E-Mail link for openSUSE-SU-2017:0479-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RQZTLPJMRRA3NZ4APLJA5UYFJJH44POI/#RQZTLPJMRRA3NZ4APLJA5UYFJJH44POI E-Mail link for openSUSE-SU-2017:0618-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP2 libmysqlclient-devel libmysqlclient18 libmysqlclient18-32bit libmysqlclient_r18 libmysqlclient_r18-32bit libmysqld-devel libmysqld18 mariadb mariadb-client mariadb-errormessages mariadb-tools libmysqlclient18 as a component of SUSE Linux Enterprise Desktop 12 SP1 libmysqlclient18-32bit as a component of SUSE Linux Enterprise Desktop 12 SP1 libmysqlclient_r18 as a component of SUSE Linux Enterprise Desktop 12 SP1 libmysqlclient_r18-32bit as a component of SUSE Linux Enterprise Desktop 12 SP1 mariadb as a component of SUSE Linux Enterprise Desktop 12 SP1 mariadb-client as a component of SUSE Linux Enterprise Desktop 12 SP1 mariadb-errormessages as a component of SUSE Linux Enterprise Desktop 12 SP1 libmysqlclient18 as a component of SUSE Linux Enterprise Server 12 SP1 libmysqlclient18-32bit as a component of SUSE Linux Enterprise Server 12 SP1 mariadb as a component of SUSE Linux Enterprise Server 12 SP1 mariadb-client as a component of SUSE Linux Enterprise Server 12 SP1 mariadb-errormessages as a component of SUSE Linux Enterprise Server 12 SP1 mariadb-tools as a component of SUSE Linux Enterprise Server 12 SP1 libmysqlclient18 as a component of SUSE Linux Enterprise Server 12 SP2 libmysqlclient18-32bit as a component of SUSE Linux Enterprise Server 12 SP2 mariadb as a component of SUSE Linux Enterprise Server 12 SP2 mariadb-client as a component of SUSE Linux Enterprise Server 12 SP2 mariadb-errormessages as a component of SUSE Linux Enterprise Server 12 SP2 mariadb-tools as a component of SUSE Linux Enterprise Server 12 SP2 libmysqlclient-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libmysqlclient_r18 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libmysqld-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libmysqld18 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 mariadb as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libmysqlclient-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libmysqlclient_r18 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libmysqld-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libmysqld18 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 mariadb as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libmysqlclient_r18 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 libmysqlclient_r18-32bit as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 mariadb as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 libmysqlclient_r18 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 libmysqlclient_r18-32bit as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 mariadb as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 6.8 (Availability impacts). CVE-2016-8318 SUSE Linux Enterprise Desktop 12 SP1:libmysqlclient18 SUSE Linux Enterprise Desktop 12 SP1:libmysqlclient18-32bit SUSE Linux Enterprise Desktop 12 SP1:libmysqlclient_r18 SUSE Linux Enterprise Desktop 12 SP1:libmysqlclient_r18-32bit SUSE Linux Enterprise Desktop 12 SP1:mariadb SUSE Linux Enterprise Desktop 12 SP1:mariadb-client SUSE Linux Enterprise Desktop 12 SP1:mariadb-errormessages SUSE Linux Enterprise Server 12 SP1:libmysqlclient18 SUSE Linux Enterprise Server 12 SP1:libmysqlclient18-32bit SUSE Linux Enterprise Server 12 SP1:mariadb SUSE Linux Enterprise Server 12 SP1:mariadb-client SUSE Linux Enterprise Server 12 SP1:mariadb-errormessages SUSE Linux Enterprise Server 12 SP1:mariadb-tools SUSE Linux Enterprise Server 12 SP2:libmysqlclient18 SUSE Linux Enterprise Server 12 SP2:libmysqlclient18-32bit SUSE Linux Enterprise Server 12 SP2:mariadb SUSE Linux Enterprise Server 12 SP2:mariadb-client SUSE Linux Enterprise Server 12 SP2:mariadb-errormessages SUSE Linux Enterprise Server 12 SP2:mariadb-tools SUSE Linux Enterprise Software Development Kit 12 SP1:libmysqlclient-devel SUSE Linux Enterprise Software Development Kit 12 SP1:libmysqlclient_r18 SUSE Linux Enterprise Software Development Kit 12 SP1:libmysqld-devel SUSE Linux Enterprise Software Development Kit 12 SP1:libmysqld18 SUSE Linux Enterprise Software Development Kit 12 SP1:mariadb SUSE Linux Enterprise Software Development Kit 12 SP2:libmysqlclient-devel SUSE Linux Enterprise Software Development Kit 12 SP2:libmysqlclient_r18 SUSE Linux Enterprise Software Development Kit 12 SP2:libmysqld-devel SUSE Linux Enterprise Software Development Kit 12 SP2:libmysqld18 SUSE Linux Enterprise Software Development Kit 12 SP2:mariadb SUSE Linux Enterprise Workstation Extension 12 SP1:libmysqlclient_r18 SUSE Linux Enterprise Workstation Extension 12 SP1:libmysqlclient_r18-32bit SUSE Linux Enterprise Workstation Extension 12 SP1:mariadb SUSE Linux Enterprise Workstation Extension 12 SP2:libmysqlclient_r18 SUSE Linux Enterprise Workstation Extension 12 SP2:libmysqlclient_r18-32bit SUSE Linux Enterprise Workstation Extension 12 SP2:mariadb important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 6.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H