[ALAS-2016-756] Amazon Linux AMI 2014.03 - ALAS-2016-756: important priority package update for mysql55 mysql56
Severity
Important
Affected Packages
42
CVEs
1
Package updates are available for Amazon Linux AMI that fix the following vulnerabilities:
CVE-2016-6662:
It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server.
1375198:
CVE-2016-6662 mysql: general_log can write to configuration files, leading to privilege escalation
- ID
- ALAS-2016-756
- Severity
- important
- URL
- https://alas.aws.amazon.com/ALAS-2016-756.html
- Published
-
2016-10-12T17:00:00
(8 years ago) - Modified
-
2016-10-12T17:00:00
(8 years ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
- ALAS-2017-800
- ALPINE:CVE-2016-6662
- DSA-3666-1
- ELSA-2016-2595
- ELSA-2017-0184
- FEDORA-2016-0901301dff
- FEDORA-2016-58f90ae3cc
- FREEBSD:856B88BF-7984-11E6-81E7-D050996490D0
- FREEBSD:B64A7389-7C27-11E6-8AAA-5404A68AD561
- GLSA-201701-01
- RHSA-2016:2595
- RHSA-2017:0184
- SSA:2016-257-01
- SUSE-SU-2016:2343-1
- SUSE-SU-2016:2395-1
- SUSE-SU-2016:2404-1
- SUSE-SU-2016:2780-1
- USN-3078-1
Source | # ID | Name | URL |
---|---|---|---|
CVE | CVE-2016-6662 | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6662 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/amazonlinux/mysql56?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56 | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56 | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-test?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-test | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-test?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-test | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-server?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-server | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-server?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-server | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-libs?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-libs | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-libs?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-libs | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-errmsg?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-errmsg | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-errmsg?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-errmsg | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-embedded?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-embedded | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-embedded?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-embedded | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-embedded-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-embedded-devel | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-embedded-devel?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-embedded-devel | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-devel | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-devel?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-devel | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-debuginfo | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-debuginfo | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-common?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-common | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-common?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-common | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql56-bench?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql56-bench | < 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql56-bench?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql56-bench | < 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55 | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55 | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-test?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-test | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-test?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-test | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-server?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-server | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-server?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-server | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-libs?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-libs | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-libs?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-libs | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-embedded?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-embedded | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-embedded?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-embedded | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-embedded-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-embedded-devel | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-embedded-devel?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-embedded-devel | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-devel | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-devel?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-devel | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-debuginfo | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-debuginfo | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql55-bench?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql55-bench | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql55-bench?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql55-bench | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
Affected | pkg:rpm/amazonlinux/mysql-config?arch=x86_64&distro=amazonlinux-1 | amazonlinux | mysql-config | < 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
Affected | pkg:rpm/amazonlinux/mysql-config?arch=i686&distro=amazonlinux-1 | amazonlinux | mysql-config | < 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |