Security update for MySQL SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:0377-1 Final 1 1 2016-02-08T10:05:47Z current 2016-02-08T10:05:47Z 2016-02-08T10:05:47Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for MySQL This update to MySQL 5.6.28 fixes the following issues (bsc#962779): - CVE-2015-7744: Lack of verification against faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote attackers to obtain private RSA keys by capturing TLS handshakes, aka a Lenstra attack. - CVE-2016-0502: Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. - CVE-2016-0503: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0504. - CVE-2016-0504: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0503. - CVE-2016-0505: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Options. - CVE-2016-0546: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Client. - CVE-2016-0594: Unspecified vulnerability in Oracle MySQL 5.6.21 and earlier allows remote authenticated users to affect availability via vectors related to DML. - CVE-2016-0595: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier allows remote authenticated users to affect availability via vectors related to DML. - CVE-2016-0596: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and 5.6.27 and earlier allows remote authenticated users to affect availability via vectors related to DML. - CVE-2016-0597: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. - CVE-2016-0598: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML. - CVE-2016-0600: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. - CVE-2016-0605: Unspecified vulnerability in Oracle MySQL 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors. - CVE-2016-0606: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect integrity via unknown vectors related to encryption. - CVE-2016-0607: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to replication. - CVE-2016-0608: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via vectors related to UDF. - CVE-2016-0609: Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to privileges. - CVE-2016-0610: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. - CVE-2016-0611: Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. - bsc#959724: Possible buffer overflow from incorrect use of strcpy() and sprintf() The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html E-Mail link for openSUSE-SU-2016:0377-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings libmysql56client18-5.6.28-7.16.1 libmysql56client18-32bit-5.6.28-7.16.1 libmysql56client_r18-5.6.28-7.16.1 libmysql56client_r18-32bit-5.6.28-7.16.1 mysql-community-server-5.6.28-7.16.1 mysql-community-server-bench-5.6.28-7.16.1 mysql-community-server-client-5.6.28-7.16.1 mysql-community-server-errormessages-5.6.28-7.16.1 mysql-community-server-test-5.6.28-7.16.1 mysql-community-server-tools-5.6.28-7.16.1 wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote attackers to obtain private RSA keys by capturing TLS handshakes, aka a Lenstra attack. CVE-2015-7744 moderate 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2015-7744.html CVE-2015-7744 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. CVE-2016-0502 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0502.html CVE-2016-0502 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0504. CVE-2016-0503 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0503.html CVE-2016-0503 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0503. CVE-2016-0504 moderate 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0504.html CVE-2016-0504 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Options. CVE-2016-0505 moderate 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0505.html CVE-2016-0505 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Client. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name. CVE-2016-0546 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0546.html CVE-2016-0546 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.21 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0594 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0594.html CVE-2016-0594 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0595 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0595.html CVE-2016-0595 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and 5.6.27 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0596 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0596.html CVE-2016-0596 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. CVE-2016-0597 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0597.html CVE-2016-0597 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0598 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0598.html CVE-2016-0598 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. CVE-2016-0600 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0600.html CVE-2016-0600 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors. CVE-2016-0605 moderate 2.1 AV:N/AC:H/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0605.html CVE-2016-0605 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect integrity via unknown vectors related to encryption. CVE-2016-0606 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:P/A:N Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0606.html CVE-2016-0606 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to replication. CVE-2016-0607 moderate 2.8 AV:N/AC:M/Au:M/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0607.html CVE-2016-0607 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to UDF. CVE-2016-0608 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0608.html CVE-2016-0608 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to privileges. CVE-2016-0609 moderate 1.7 AV:N/AC:H/Au:M/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0609.html CVE-2016-0609 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. CVE-2016-0610 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0610.html CVE-2016-0610 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. CVE-2016-0611 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html https://www.suse.com/security/cve/CVE-2016-0611.html CVE-2016-0611 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952