CVE-2015-2582: Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors…

CVE-2015-2582 MySQL vulnerabilities Title: MySQL vulnerabilities Summary: Several security issues were fixed in MySQL. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 5.5.44 in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 14.10. Ubuntu 15.04 has been updated to MySQL 5.6.25. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html Instructions: In general, a standard system update will make all the necessary cha

CVE-2015-2582 [MEDIUM] mysql: unspecified vulnerability related to Server:GIS (CPU July 2015) mysql: unspecified vulnerability related to Server:GIS (CPU July 2015) Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS. Package: mariadb-galera (Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)) - Will not fix Package: mariadb-galera (Red Hat Enterprise Linux OpenStack Platform 6 (Juno)) - Will not fix Package: mariadb-galera (Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)) - Will not fix Package: mariadb-galera (Red Hat OpenStack Platform 10 (Newton)) - Will not fix Package: mariadb-galera (Red Hat OpenStack Platform 11 (Ocata)) - Will not fix Package: mariadb-galera (Red Hat OpenStack Platform 12 (Pike)) - Will not fix Package: mariadb-galer

CVE-2015-2582 [MEDIUM] GHSA-fw8r-p4q8-w66f: Unspecified vulnerability in Oracle MySQL Server 5 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.

CVE-2015-2582 [MEDIUM] CVE-2015-2582: Unspecified vulnerability in Oracle MySQL Server 5 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.

CVE-2015-8805 [CRITICAL] CVE-2015-8805 nettle: secp256 calculation bug CVE-2015-8805 nettle: secp256 calculation bug A mistake in the computation of elliptic curve scalar multiplications was found in nettle. Oss-security reference: http://seclists.org/oss-sec/2016/q1/266 CVE assignment: http://seclists.org/oss-sec/2016/q1/273 Upstream fix: https://git.lysator.liu.se/nettle/nettle/commit/c71d2c9d20eeebb985e3872e4550137209e3ce4d Discussion: Fixed upstream in nettle 3.2: https://lists.gnu.org/archive/html/info-gnu/2016-01/msg00006.html --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2016:2582 https://rhn.redhat.com/errata/RHSA-2016-2582.html

CVE-2015-2582 [MEDIUM] CVE-2015-2582 mysql: unspecified vulnerability related to Server:GIS (CPU July 2015) CVE-2015-2582 mysql: unspecified vulnerability related to Server:GIS (CPU July 2015) Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : GIS). Supported versions that are affected are 5.5.43 and earlier and 5.6.24 and earlier. Easily exploitable vulnerability allows successful authenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. External References: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixMSQL http://www.oracle.com/technetwork/topics/security/cpujul2015verbose-2367947.html#MSQL Discussion: This issue has been addressed in the following products: Red Hat Enter