[ALAS-2016-756] Amazon Linux AMI 2014.03 - ALAS-2016-756: important priority package update for mysql55 mysql56
Severity
Important
Affected Packages
42
CVEs
1
Package updates are available for Amazon Linux AMI that fix the following vulnerabilities:
CVE-2016-6662:
It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server.
1375198:
CVE-2016-6662 mysql: general_log can write to configuration files, leading to privilege escalation
- ID
- ALAS-2016-756
- Severity
- important
- URL
- https://alas.aws.amazon.com/ALAS-2016-756.html
- Published
-
2016-10-12T17:00:00
(8 years ago) - Modified
-
2016-10-12T17:00:00
(8 years ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
-
ALAS-2017-800
-
ALPINE:CVE-2016-6662
-
DSA-3666-1
-
ELSA-2016-2595
-
ELSA-2017-0184
-
FEDORA-2016-0901301dff
-
FEDORA-2016-58f90ae3cc
-
FREEBSD:856B88BF-7984-11E6-81E7-D050996490D0
-
FREEBSD:B64A7389-7C27-11E6-8AAA-5404A68AD561
-
GLSA-201701-01
-
RHSA-2016:2595
-
RHSA-2017:0184
-
SSA:2016-257-01
-
SUSE-SU-2016:2343-1
-
SUSE-SU-2016:2395-1
-
SUSE-SU-2016:2404-1
-
SUSE-SU-2016:2780-1
-
USN-3078-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2016-6662 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/amazonlinux/mysql56?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
 mysql56
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-test?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-test
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-test?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-test
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-server?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-server
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-server?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-server
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-libs?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-libs
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-libs?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-libs
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-errmsg?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-errmsg
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-errmsg?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-errmsg
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-embedded?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-embedded
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-embedded?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-embedded
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-embedded-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-embedded-devel
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-embedded-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-embedded-devel
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-devel
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-devel
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-debuginfo
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-debuginfo
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-common?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-common
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-common?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-common
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql56-bench?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql56-bench
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql56-bench?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql56-bench
|
< 5.6.33-1.21.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-test?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-test
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-test?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-test
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-server?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-server
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-server?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-server
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-libs?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-libs
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-libs?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-libs
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-embedded?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-embedded
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-embedded?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-embedded
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-embedded-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-embedded-devel
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-embedded-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-embedded-devel
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-devel
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-devel
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-debuginfo
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-debuginfo
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql55-bench?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql55-bench
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql55-bench?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql55-bench
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/mysql-config?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
mysql-config
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/mysql-config?arch=i686&distro=amazonlinux-1 | amazonlinux |
mysql-config
|
< 5.5.52-1.13.amzn1 | amazonlinux-1 | i686 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |