Security update for mariadb SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:1664-1 Final 1 1 2016-06-23T07:53:19Z current 2016-06-23T07:53:19Z 2016-06-23T07:53:19Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mariadb mariadb was updated to version 10.0.25 to fix 25 security issues. These security issues were fixed: - CVE-2016-0505: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Options (bsc#980904). - CVE-2016-0546: Unspecified vulnerability allowed local users to affect confidentiality, integrity, and availability via unknown vectors related to Client (bsc#980904). - CVE-2016-0596: Unspecified vulnerability allowed remote authenticated users to affect availability via vectors related to DML (bsc#980904). - CVE-2016-0597: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Optimizer (bsc#980904). - CVE-2016-0598: Unspecified vulnerability allowed remote authenticated users to affect availability via vectors related to DML (bsc#980904). - CVE-2016-0600: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to InnoDB (bsc#980904). - CVE-2016-0606: Unspecified vulnerability allowed remote authenticated users to affect integrity via unknown vectors related to encryption (bsc#980904). - CVE-2016-0608: Unspecified vulnerability allowed remote authenticated users to affect availability via vectors related to UDF (bsc#980904). - CVE-2016-0609: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to privileges (bsc#980904). - CVE-2016-0616: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Optimizer (bsc#980904). - CVE-2016-0640: Unspecified vulnerability allowed local users to affect integrity and availability via vectors related to DML (bsc#980904). - CVE-2016-0641: Unspecified vulnerability allowed local users to affect confidentiality and availability via vectors related to MyISAM (bsc#980904). - CVE-2016-0642: Unspecified vulnerability allowed local users to affect integrity and availability via vectors related to Federated (bsc#980904). - CVE-2016-0643: Unspecified vulnerability allowed local users to affect confidentiality via vectors related to DML (bsc#980904). - CVE-2016-0644: Unspecified vulnerability allowed local users to affect availability via vectors related to DDL (bsc#980904). - CVE-2016-0646: Unspecified vulnerability allowed local users to affect availability via vectors related to DML (bsc#980904). - CVE-2016-0647: Unspecified vulnerability allowed local users to affect availability via vectors related to FTS (bsc#980904). - CVE-2016-0648: Unspecified vulnerability allowed local users to affect availability via vectors related to PS (bsc#980904). - CVE-2016-0649: Unspecified vulnerability allowed local users to affect availability via vectors related to PS (bsc#980904). - CVE-2016-0650: Unspecified vulnerability allowed local users to affect availability via vectors related to Replication (bsc#980904). - CVE-2016-0651: Unspecified vulnerability allowed local users to affect availability via vectors related to Optimizer (bsc#980904). - CVE-2016-0655: Unspecified vulnerability allowed local users to affect availability via vectors related to InnoDB (bsc#980904). - CVE-2016-0666: Unspecified vulnerability allowed local users to affect availability via vectors related to Security: Privileges (bsc#980904). - CVE-2016-0668: Unspecified vulnerability allowed local users to affect availability via vectors related to InnoDB (bsc#980904). - CVE-2016-2047: The ssl_verify_server_cert function in sql-common/client.c did not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allowed man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated by "/OU=/CN=bar.com/CN=foo.com (bsc#963806). These non-security issues were fixed: - bsc#970295: Fix the leftovers of "logrotate.d/mysql" string in the logrotate error message. Occurrences of this string were changed to "logrotate.d/mariadb" - bsc#963810: Add 'log-error' and 'secure-file-priv' configuration options * add '/etc/my.cnf.d/error_log.conf' that specifies 'log-error = /var/log/mysql/mysqld.log'. If no path is set, the error log is written to '/var/lib/mysql/$HOSTNAME.err', which is not picked up by logrotate. * add '/etc/my.cnf.d/secure_file_priv.conf' which specifies that 'LOAD DATA', 'SELECT ... INTO' and 'LOAD FILE()' will only work with files in the directory specified by 'secure-file-priv' option (='/var/lib/mysql-files'). - Temporarily disable OQGraph. It seems to need the boost library with the version not earlier than 1.40 and not later than 1.55 (MDEV-9479) - boo#979524: Don't remove HandlerSocket plugin - boo#970287: Add "BuildRequires: jemalloc-devel" in order to allow enabling of the TokuDB plugin - run 'usermod -g mysql mysql' only if mysql user is not in mysql group. Run 'usermod -s /bin/false/ mysql' only if mysql user doesn't have '/bin/false' shell set. - Re-enable profiling support The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html E-Mail link for openSUSE-SU-2016:1664-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 libmysqlclient-devel-10.0.25-2.24.1 libmysqlclient18-10.0.25-2.24.1 libmysqlclient18-32bit-10.0.25-2.24.1 libmysqlclient18-debuginfo-10.0.25-2.24.1 libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 libmysqlclient_r18-10.0.25-2.24.1 libmysqlclient_r18-32bit-10.0.25-2.24.1 libmysqld-devel-10.0.25-2.24.1 libmysqld18-10.0.25-2.24.1 libmysqld18-debuginfo-10.0.25-2.24.1 mariadb-10.0.25-2.24.1 mariadb-bench-10.0.25-2.24.1 mariadb-bench-debuginfo-10.0.25-2.24.1 mariadb-client-10.0.25-2.24.1 mariadb-client-debuginfo-10.0.25-2.24.1 mariadb-debuginfo-10.0.25-2.24.1 mariadb-debugsource-10.0.25-2.24.1 mariadb-errormessages-10.0.25-2.24.1 mariadb-test-10.0.25-2.24.1 mariadb-test-debuginfo-10.0.25-2.24.1 mariadb-tools-10.0.25-2.24.1 mariadb-tools-debuginfo-10.0.25-2.24.1 libmysqlclient-devel-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient18-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient18-32bit-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient18-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient_r18-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqlclient_r18-32bit-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqld-devel-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqld18-10.0.25-2.24.1 as a component of openSUSE 13.2 libmysqld18-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-bench-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-bench-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-client-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-client-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-debugsource-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-errormessages-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-test-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-test-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-tools-10.0.25-2.24.1 as a component of openSUSE 13.2 mariadb-tools-debuginfo-10.0.25-2.24.1 as a component of openSUSE 13.2 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Options. CVE-2016-0505 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0505.html CVE-2016-0505 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Client. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that these are multiple buffer overflows in the mysqlshow tool that allow remote database servers to have unspecified impact via a long table or database name. CVE-2016-0546 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0546.html CVE-2016-0546 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and 5.6.27 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0596 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0596.html CVE-2016-0596 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. CVE-2016-0597 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0597.html CVE-2016-0597 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-0598 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0598.html CVE-2016-0598 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. CVE-2016-0600 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0600.html CVE-2016-0600 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect integrity via unknown vectors related to encryption. CVE-2016-0606 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0606.html CVE-2016-0606 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to UDF. CVE-2016-0608 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0608.html CVE-2016-0608 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to privileges. CVE-2016-0609 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0609.html CVE-2016-0609 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. CVE-2016-0616 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0616.html CVE-2016-0616 https://bugzilla.suse.com/962779 SUSE Bug 962779 https://bugzilla.suse.com/962817 SUSE Bug 962817 https://bugzilla.suse.com/962930 SUSE Bug 962930 https://bugzilla.suse.com/962931 SUSE Bug 962931 https://bugzilla.suse.com/962932 SUSE Bug 962932 https://bugzilla.suse.com/962934 SUSE Bug 962934 https://bugzilla.suse.com/962935 SUSE Bug 962935 https://bugzilla.suse.com/962936 SUSE Bug 962936 https://bugzilla.suse.com/962937 SUSE Bug 962937 https://bugzilla.suse.com/962938 SUSE Bug 962938 https://bugzilla.suse.com/962939 SUSE Bug 962939 https://bugzilla.suse.com/962941 SUSE Bug 962941 https://bugzilla.suse.com/962942 SUSE Bug 962942 https://bugzilla.suse.com/962943 SUSE Bug 962943 https://bugzilla.suse.com/962944 SUSE Bug 962944 https://bugzilla.suse.com/962945 SUSE Bug 962945 https://bugzilla.suse.com/962946 SUSE Bug 962946 https://bugzilla.suse.com/962947 SUSE Bug 962947 https://bugzilla.suse.com/962948 SUSE Bug 962948 https://bugzilla.suse.com/962949 SUSE Bug 962949 https://bugzilla.suse.com/962950 SUSE Bug 962950 https://bugzilla.suse.com/962951 SUSE Bug 962951 https://bugzilla.suse.com/962952 SUSE Bug 962952 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect integrity and availability via vectors related to DML. CVE-2016-0640 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 5.2 AV:L/AC:L/Au:S/C:N/I:P/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0640.html CVE-2016-0640 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect confidentiality and availability via vectors related to MyISAM. CVE-2016-0641 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.9 AV:L/AC:L/Au:M/C:P/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0641.html CVE-2016-0641 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated. CVE-2016-0642 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.3 AV:L/AC:H/Au:M/C:N/I:P/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0642.html CVE-2016-0642 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. CVE-2016-0643 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 1.7 AV:L/AC:L/Au:S/C:P/I:N/A:N Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0643.html CVE-2016-0643 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DDL. CVE-2016-0644 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0644.html CVE-2016-0644 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DML. CVE-2016-0646 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0646.html CVE-2016-0646 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS. CVE-2016-0647 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 5.4 AV:N/AC:H/Au:N/C:N/I:C/A:N Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0647.html CVE-2016-0647 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. CVE-2016-0648 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0648.html CVE-2016-0648 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to PS. CVE-2016-0649 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0649.html CVE-2016-0649 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to Replication. CVE-2016-0650 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0650.html CVE-2016-0650 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer. CVE-2016-0651 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0651.html CVE-2016-0651 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to InnoDB. CVE-2016-0655 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.0 AV:L/AC:H/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0655.html CVE-2016-0655 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to Security: Privileges. CVE-2016-0666 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 4.5 AV:L/AC:L/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0666.html CVE-2016-0666 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0.x before 10.0.24 and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to InnoDB. CVE-2016-0668 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important 3.6 AV:L/AC:H/Au:M/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-0668.html CVE-2016-0668 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904 The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated by "/OU=/CN=bar.com/CN=foo.com." CVE-2016-2047 openSUSE 13.2:libmysqlclient-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient18-debuginfo-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-10.0.25-2.24.1 openSUSE 13.2:libmysqlclient_r18-32bit-10.0.25-2.24.1 openSUSE 13.2:libmysqld-devel-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-10.0.25-2.24.1 openSUSE 13.2:libmysqld18-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-10.0.25-2.24.1 openSUSE 13.2:mariadb-bench-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-10.0.25-2.24.1 openSUSE 13.2:mariadb-client-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-debugsource-10.0.25-2.24.1 openSUSE 13.2:mariadb-errormessages-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-10.0.25-2.24.1 openSUSE 13.2:mariadb-test-debuginfo-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-10.0.25-2.24.1 openSUSE 13.2:mariadb-tools-debuginfo-10.0.25-2.24.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html https://www.suse.com/security/cve/CVE-2016-2047.html CVE-2016-2047 https://bugzilla.suse.com/963806 SUSE Bug 963806 https://bugzilla.suse.com/976341 SUSE Bug 976341 https://bugzilla.suse.com/980904 SUSE Bug 980904