Security update for mysql-community-server SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:2769-1 Final 1 1 2016-11-10T12:16:47Z current 2016-11-10T12:16:47Z 2016-11-10T12:16:47Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mysql-community-server mysql-community-server was updated to 5.6.34 to fix the following issues: * Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-34.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-33.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-32.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-31.html * fixed CVEs: CVE-2016-6304, CVE-2016-6662, CVE-2016-7440, CVE-2016-5584, CVE-2016-5617, CVE-2016-5616, CVE-2016-5626, CVE-2016-3492, CVE-2016-5629, CVE-2016-5507, CVE-2016-8283, CVE-2016-5609, CVE-2016-5612, CVE-2016-5627, CVE-2016-5630, CVE-2016-8284, CVE-2016-8288, CVE-2016-3477, CVE-2016-2105, CVE-2016-3486, CVE-2016-3501, CVE-2016-3521, CVE-2016-3615, CVE-2016-3614, CVE-2016-3459, CVE-2016-5439, CVE-2016-5440 * fixes SUSE Bugs: [boo#999666], [boo#998309], [boo#1005581], [boo#1005558], [boo#1005563], [boo#1005562], [boo#1005566], [boo#1005555], [boo#1005569], [boo#1005557], [boo#1005582], [boo#1005560], [boo#1005561], [boo#1005567], [boo#1005570], [boo#1005583], [boo#1005586], [boo#989913], [boo#977614], [boo#989914], [boo#989915], [boo#989919], [boo#989922], [boo#989921], [boo#989911], [boo#989925], [boo#989926] - append '--ignore-db-dir=lost+found' to the mysqld options in 'mysql-systemd-helper' script if 'lost+found' directory is found in $datadir [boo#986251] - remove syslog.target from *.service files [boo#983938] - add systemd to deps to build on leap and friends - replace '%{_libexecdir}/systemd/system' with %{_unitdir} macro - remove useless mysql@default.service [boo#971456] - replace all occurrences of the string '@sysconfdir@' with '/etc' in mysql-community-server-5.6.3-logrotate.patch as it wasn't expanded properly [boo#990890] - remove '%define _rundir' as 13.1 is out of support scope - run 'usermod -g mysql mysql' only if mysql user is not in mysql group. Run 'usermod -s /bin/false/ mysql' only if mysql user doesn't have '/bin/false' shell set. - re-enable mysql profiling The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html E-Mail link for openSUSE-SU-2016:2769-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 libmysql56client18-5.6.34-19.2 libmysql56client18-32bit-5.6.34-19.2 libmysql56client_r18-5.6.34-19.2 libmysql56client_r18-32bit-5.6.34-19.2 mysql-community-server-5.6.34-19.2 mysql-community-server-bench-5.6.34-19.2 mysql-community-server-client-5.6.34-19.2 mysql-community-server-errormessages-5.6.34-19.2 mysql-community-server-test-5.6.34-19.2 mysql-community-server-tools-5.6.34-19.2 libmysql56client18-5.6.34-19.2 as a component of openSUSE Leap 42.1 libmysql56client18-32bit-5.6.34-19.2 as a component of openSUSE Leap 42.1 libmysql56client_r18-5.6.34-19.2 as a component of openSUSE Leap 42.1 libmysql56client_r18-32bit-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-bench-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-client-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-errormessages-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-test-5.6.34-19.2 as a component of openSUSE Leap 42.1 mysql-community-server-tools-5.6.34-19.2 as a component of openSUSE Leap 42.1 Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data. CVE-2016-2105 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 low 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-2105.html CVE-2016-2105 https://bugzilla.suse.com/977584 SUSE Bug 977584 https://bugzilla.suse.com/977614 SUSE Bug 977614 https://bugzilla.suse.com/978492 SUSE Bug 978492 https://bugzilla.suse.com/989902 SUSE Bug 989902 https://bugzilla.suse.com/990369 SUSE Bug 990369 https://bugzilla.suse.com/990370 SUSE Bug 990370 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB. CVE-2016-3459 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3459.html CVE-2016-3459 https://bugzilla.suse.com/989911 SUSE Bug 989911 Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser. CVE-2016-3477 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important 7.1 AV:N/AC:H/Au:S/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3477.html CVE-2016-3477 https://bugzilla.suse.com/989913 SUSE Bug 989913 https://bugzilla.suse.com/991616 SUSE Bug 991616 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS. CVE-2016-3486 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3486.html CVE-2016-3486 https://bugzilla.suse.com/989914 SUSE Bug 989914 Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. CVE-2016-3492 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3492.html CVE-2016-3492 https://bugzilla.suse.com/1005555 SUSE Bug 1005555 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. CVE-2016-3501 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3501.html CVE-2016-3501 https://bugzilla.suse.com/989915 SUSE Bug 989915 Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types. CVE-2016-3521 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3521.html CVE-2016-3521 https://bugzilla.suse.com/989919 SUSE Bug 989919 https://bugzilla.suse.com/991616 SUSE Bug 991616 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption. CVE-2016-3614 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3614.html CVE-2016-3614 https://bugzilla.suse.com/989921 SUSE Bug 989921 Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML. CVE-2016-3615 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important 4.9 AV:N/AC:H/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-3615.html CVE-2016-3615 https://bugzilla.suse.com/989922 SUSE Bug 989922 https://bugzilla.suse.com/991616 SUSE Bug 991616 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Privileges. CVE-2016-5439 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5439.html CVE-2016-5439 https://bugzilla.suse.com/989925 SUSE Bug 989925 Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote administrators to affect availability via vectors related to Server: RBR. CVE-2016-5440 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5440.html CVE-2016-5440 https://bugzilla.suse.com/989926 SUSE Bug 989926 https://bugzilla.suse.com/991616 SUSE Bug 991616 Unspecified vulnerability in Oracle MySQL 5.6.32 and earlier and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. CVE-2016-5507 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5507.html CVE-2016-5507 https://bugzilla.suse.com/1005557 SUSE Bug 1005557 Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption. CVE-2016-5584 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4.9 AV:N/AC:H/Au:S/C:C/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5584.html CVE-2016-5584 https://bugzilla.suse.com/1005558 SUSE Bug 1005558 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-5609 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5609.html CVE-2016-5609 https://bugzilla.suse.com/1005560 SUSE Bug 1005560 Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. CVE-2016-5612 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5612.html CVE-2016-5612 https://bugzilla.suse.com/1005561 SUSE Bug 1005561 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-6663. Reason: This candidate is a reservation duplicate of CVE-2016-6663. Notes: All CVE users should reference CVE-2016-6663 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. CVE-2016-5616 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 6 AV:L/AC:H/Au:S/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5616.html CVE-2016-5616 https://bugzilla.suse.com/1001367 SUSE Bug 1001367 https://bugzilla.suse.com/1005555 SUSE Bug 1005555 https://bugzilla.suse.com/1005557 SUSE Bug 1005557 https://bugzilla.suse.com/1005561 SUSE Bug 1005561 https://bugzilla.suse.com/1005562 SUSE Bug 1005562 https://bugzilla.suse.com/1005563 SUSE Bug 1005563 https://bugzilla.suse.com/1005564 SUSE Bug 1005564 https://bugzilla.suse.com/1005566 SUSE Bug 1005566 https://bugzilla.suse.com/1005569 SUSE Bug 1005569 https://bugzilla.suse.com/1005570 SUSE Bug 1005570 https://bugzilla.suse.com/1005582 SUSE Bug 1005582 https://bugzilla.suse.com/1008253 SUSE Bug 1008253 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 https://bugzilla.suse.com/1020875 SUSE Bug 1020875 https://bugzilla.suse.com/1020876 SUSE Bug 1020876 https://bugzilla.suse.com/1020877 SUSE Bug 1020877 https://bugzilla.suse.com/1020878 SUSE Bug 1020878 https://bugzilla.suse.com/1020882 SUSE Bug 1020882 https://bugzilla.suse.com/1020883 SUSE Bug 1020883 https://bugzilla.suse.com/1020884 SUSE Bug 1020884 https://bugzilla.suse.com/1020885 SUSE Bug 1020885 https://bugzilla.suse.com/1020888 SUSE Bug 1020888 https://bugzilla.suse.com/1020890 SUSE Bug 1020890 https://bugzilla.suse.com/1020891 SUSE Bug 1020891 https://bugzilla.suse.com/1020893 SUSE Bug 1020893 https://bugzilla.suse.com/1020894 SUSE Bug 1020894 https://bugzilla.suse.com/1020896 SUSE Bug 1020896 https://bugzilla.suse.com/1020898 SUSE Bug 1020898 https://bugzilla.suse.com/1020901 SUSE Bug 1020901 https://bugzilla.suse.com/1022428 SUSE Bug 1022428 https://bugzilla.suse.com/1029014 SUSE Bug 1029014 https://bugzilla.suse.com/1029396 SUSE Bug 1029396 https://bugzilla.suse.com/1049393 SUSE Bug 1049393 https://bugzilla.suse.com/1049394 SUSE Bug 1049394 https://bugzilla.suse.com/1049396 SUSE Bug 1049396 https://bugzilla.suse.com/1049399 SUSE Bug 1049399 https://bugzilla.suse.com/1049400 SUSE Bug 1049400 https://bugzilla.suse.com/1049401 SUSE Bug 1049401 https://bugzilla.suse.com/1049402 SUSE Bug 1049402 https://bugzilla.suse.com/1049403 SUSE Bug 1049403 https://bugzilla.suse.com/1049404 SUSE Bug 1049404 https://bugzilla.suse.com/1049405 SUSE Bug 1049405 https://bugzilla.suse.com/1049406 SUSE Bug 1049406 https://bugzilla.suse.com/1049407 SUSE Bug 1049407 https://bugzilla.suse.com/1049408 SUSE Bug 1049408 https://bugzilla.suse.com/1049409 SUSE Bug 1049409 https://bugzilla.suse.com/1049410 SUSE Bug 1049410 https://bugzilla.suse.com/1049411 SUSE Bug 1049411 https://bugzilla.suse.com/1049412 SUSE Bug 1049412 https://bugzilla.suse.com/1049414 SUSE Bug 1049414 https://bugzilla.suse.com/1049415 SUSE Bug 1049415 https://bugzilla.suse.com/1049416 SUSE Bug 1049416 https://bugzilla.suse.com/1049417 SUSE Bug 1049417 https://bugzilla.suse.com/1064101 SUSE Bug 1064101 https://bugzilla.suse.com/1064107 SUSE Bug 1064107 https://bugzilla.suse.com/1064115 SUSE Bug 1064115 https://bugzilla.suse.com/1064116 SUSE Bug 1064116 https://bugzilla.suse.com/1064117 SUSE Bug 1064117 https://bugzilla.suse.com/998309 SUSE Bug 998309 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-6664. Reason: This candidate is a reservation duplicate of CVE-2016-6664. Notes: All CVE users should reference CVE-2016-6664 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. CVE-2016-5617 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5617.html CVE-2016-5617 https://bugzilla.suse.com/1001367 SUSE Bug 1001367 https://bugzilla.suse.com/1005555 SUSE Bug 1005555 https://bugzilla.suse.com/1005557 SUSE Bug 1005557 https://bugzilla.suse.com/1005561 SUSE Bug 1005561 https://bugzilla.suse.com/1005562 SUSE Bug 1005562 https://bugzilla.suse.com/1005563 SUSE Bug 1005563 https://bugzilla.suse.com/1005564 SUSE Bug 1005564 https://bugzilla.suse.com/1005566 SUSE Bug 1005566 https://bugzilla.suse.com/1005569 SUSE Bug 1005569 https://bugzilla.suse.com/1005570 SUSE Bug 1005570 https://bugzilla.suse.com/1005582 SUSE Bug 1005582 https://bugzilla.suse.com/1008253 SUSE Bug 1008253 https://bugzilla.suse.com/1020873 SUSE Bug 1020873 https://bugzilla.suse.com/1020875 SUSE Bug 1020875 https://bugzilla.suse.com/1020876 SUSE Bug 1020876 https://bugzilla.suse.com/1020877 SUSE Bug 1020877 https://bugzilla.suse.com/1020878 SUSE Bug 1020878 https://bugzilla.suse.com/1020882 SUSE Bug 1020882 https://bugzilla.suse.com/1020883 SUSE Bug 1020883 https://bugzilla.suse.com/1020884 SUSE Bug 1020884 https://bugzilla.suse.com/1020885 SUSE Bug 1020885 https://bugzilla.suse.com/1020888 SUSE Bug 1020888 https://bugzilla.suse.com/1020890 SUSE Bug 1020890 https://bugzilla.suse.com/1020891 SUSE Bug 1020891 https://bugzilla.suse.com/1020893 SUSE Bug 1020893 https://bugzilla.suse.com/1020894 SUSE Bug 1020894 https://bugzilla.suse.com/1020896 SUSE Bug 1020896 https://bugzilla.suse.com/1020898 SUSE Bug 1020898 https://bugzilla.suse.com/1020901 SUSE Bug 1020901 https://bugzilla.suse.com/1022428 SUSE Bug 1022428 https://bugzilla.suse.com/1029014 SUSE Bug 1029014 https://bugzilla.suse.com/1029396 SUSE Bug 1029396 https://bugzilla.suse.com/1049393 SUSE Bug 1049393 https://bugzilla.suse.com/1049394 SUSE Bug 1049394 https://bugzilla.suse.com/1049396 SUSE Bug 1049396 https://bugzilla.suse.com/1049399 SUSE Bug 1049399 https://bugzilla.suse.com/1049400 SUSE Bug 1049400 https://bugzilla.suse.com/1049401 SUSE Bug 1049401 https://bugzilla.suse.com/1049402 SUSE Bug 1049402 https://bugzilla.suse.com/1049403 SUSE Bug 1049403 https://bugzilla.suse.com/1049404 SUSE Bug 1049404 https://bugzilla.suse.com/1049405 SUSE Bug 1049405 https://bugzilla.suse.com/1049406 SUSE Bug 1049406 https://bugzilla.suse.com/1049407 SUSE Bug 1049407 https://bugzilla.suse.com/1049408 SUSE Bug 1049408 https://bugzilla.suse.com/1049409 SUSE Bug 1049409 https://bugzilla.suse.com/1049410 SUSE Bug 1049410 https://bugzilla.suse.com/1049411 SUSE Bug 1049411 https://bugzilla.suse.com/1049412 SUSE Bug 1049412 https://bugzilla.suse.com/1049414 SUSE Bug 1049414 https://bugzilla.suse.com/1049415 SUSE Bug 1049415 https://bugzilla.suse.com/1049416 SUSE Bug 1049416 https://bugzilla.suse.com/1049417 SUSE Bug 1049417 https://bugzilla.suse.com/1064101 SUSE Bug 1064101 https://bugzilla.suse.com/1064107 SUSE Bug 1064107 https://bugzilla.suse.com/1064115 SUSE Bug 1064115 https://bugzilla.suse.com/1064116 SUSE Bug 1064116 https://bugzilla.suse.com/1064117 SUSE Bug 1064117 https://bugzilla.suse.com/1101675 SUSE Bug 1101675 https://bugzilla.suse.com/998309 SUSE Bug 998309 Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS. CVE-2016-5626 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5626.html CVE-2016-5626 https://bugzilla.suse.com/1005566 SUSE Bug 1005566 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to Server: InnoDB. CVE-2016-5627 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5627.html CVE-2016-5627 https://bugzilla.suse.com/1005567 SUSE Bug 1005567 Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: Federated. CVE-2016-5629 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5629.html CVE-2016-5629 https://bugzilla.suse.com/1005569 SUSE Bug 1005569 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. CVE-2016-5630 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-5630.html CVE-2016-5630 https://bugzilla.suse.com/1005570 SUSE Bug 1005570 Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions. CVE-2016-6304 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-6304.html CVE-2016-6304 https://bugzilla.suse.com/1001706 SUSE Bug 1001706 https://bugzilla.suse.com/1003811 SUSE Bug 1003811 https://bugzilla.suse.com/1005579 SUSE Bug 1005579 https://bugzilla.suse.com/1021375 SUSE Bug 1021375 https://bugzilla.suse.com/999665 SUSE Bug 999665 https://bugzilla.suse.com/999666 SUSE Bug 999666 Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15. CVE-2016-6662 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-6662.html CVE-2016-6662 https://bugzilla.suse.com/1001367 SUSE Bug 1001367 https://bugzilla.suse.com/1005580 SUSE Bug 1005580 https://bugzilla.suse.com/1020873 SUSE Bug 1020873 https://bugzilla.suse.com/1020884 SUSE Bug 1020884 https://bugzilla.suse.com/1021755 SUSE Bug 1021755 https://bugzilla.suse.com/998309 SUSE Bug 998309 The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences. CVE-2016-7440 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4 AV:L/AC:H/Au:N/C:C/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-7440.html CVE-2016-7440 https://bugzilla.suse.com/1005581 SUSE Bug 1005581 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types. CVE-2016-8283 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-8283.html CVE-2016-8283 https://bugzilla.suse.com/1005582 SUSE Bug 1005582 https://bugzilla.suse.com/1008318 SUSE Bug 1008318 Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows local users to affect availability via vectors related to Server: Replication. CVE-2016-8284 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-8284.html CVE-2016-8284 https://bugzilla.suse.com/1005583 SUSE Bug 1005583 https://bugzilla.suse.com/1008117 SUSE Bug 1008117 https://bugzilla.suse.com/1008133 SUSE Bug 1008133 https://bugzilla.suse.com/1008141 SUSE Bug 1008141 https://bugzilla.suse.com/1008150 SUSE Bug 1008150 https://bugzilla.suse.com/1008151 SUSE Bug 1008151 https://bugzilla.suse.com/1008152 SUSE Bug 1008152 https://bugzilla.suse.com/1011266 SUSE Bug 1011266 https://bugzilla.suse.com/1011267 SUSE Bug 1011267 Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin. CVE-2016-8288 openSUSE Leap 42.1:libmysql56client18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client18-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-32bit-5.6.34-19.2 openSUSE Leap 42.1:libmysql56client_r18-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-bench-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-client-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-errormessages-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-test-5.6.34-19.2 openSUSE Leap 42.1:mysql-community-server-tools-5.6.34-19.2 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-11/msg00021.html https://www.suse.com/security/cve/CVE-2016-8288.html CVE-2016-8288 https://bugzilla.suse.com/1005586 SUSE Bug 1005586