FreeBSD : MySQL -- multiple vulnerabilities (8c2b2f11-0ebe-11e6-b55e-b499baebfeaf)

Critical Nessus Plugin ID 90847

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

Oracle reports reports :

Critical Patch Update contains 31 new security fixes for Oracle MySQL 5.5.48, 5.6.29, 5.7.11 and earlier

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?a0defed6

https://mariadb.com/kb/en/library/mariadb-5549-release-notes/

https://mariadb.com/kb/en/library/mariadb-10025-release-notes/

https://mariadb.com/kb/en/library/mariadb-10112-release-notes/

http://www.nessus.org/u?1f2add4e

https://www.tenable.com/security/research/tra-2016-11

Plugin Details

Severity: Critical

ID: 90847

File Name: freebsd_pkg_8c2b2f110ebe11e6b55eb499baebfeaf.nasl

Version: 2.9

Type: local

Published: 2016/05/03

Updated: 2018/11/21

Dependencies: 12634

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3.0

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:mariadb100-server, p-cpe:/a:freebsd:freebsd:mariadb101-server, p-cpe:/a:freebsd:freebsd:mariadb55-server, p-cpe:/a:freebsd:freebsd:mysql55-server, p-cpe:/a:freebsd:freebsd:mysql56-server, p-cpe:/a:freebsd:freebsd:mysql57-server, p-cpe:/a:freebsd:freebsd:percona-server, p-cpe:/a:freebsd:freebsd:percona55-server, cpe:/o:freebsd:freebsd

Patch Publication Date: 2016/04/30

Vulnerability Publication Date: 2016/04/19

Reference Information

CVE: CVE-2015-3194, CVE-2016-0639, CVE-2016-0640, CVE-2016-0641, CVE-2016-0642, CVE-2016-0643, CVE-2016-0644, CVE-2016-0646, CVE-2016-0647, CVE-2016-0648, CVE-2016-0649, CVE-2016-0650, CVE-2016-0651, CVE-2016-0652, CVE-2016-0653, CVE-2016-0654, CVE-2016-0655, CVE-2016-0656, CVE-2016-0657, CVE-2016-0658, CVE-2016-0659, CVE-2016-0661, CVE-2016-0662, CVE-2016-0663, CVE-2016-0665, CVE-2016-0666, CVE-2016-0667, CVE-2016-0668, CVE-2016-0705, CVE-2016-2047, CVE-2016-3461