CVE-2015-4737

Impact:
Low
Public Date:
2015-07-14
Bugzilla:
1244778: CVE-2015-4737 mysql: unspecified vulnerability related to Server:Pluggable Auth (CPU July 2015)

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth.

Find out more about CVE-2015-4737 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v2 metrics

Base Score 3.5
Base Metrics AV:N/AC:M/Au:S/C:P/I:N/A:N
Access Vector Network
Access Complexity Medium
Authentication Single
Confidentiality Impact Partial
Integrity Impact None
Availability Impact None

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Software Collections for Red Hat Enterprise Linux 6 (rh-mysql56-mysql) RHSA-2015:1630 2015-08-17
Red Hat Software Collections for Red Hat Enterprise Linux 6 (mariadb55-mariadb) RHSA-2015:1647 2015-08-20
Red Hat Software Collections for Red Hat Enterprise Linux 6 (rh-mariadb100-mariadb) RHSA-2015:1646 2015-08-20
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-mariadb100-mariadb) RHSA-2015:1646 2015-08-20
Red Hat Software Collections for Red Hat Enterprise Linux 7 (mariadb55-mariadb) RHSA-2015:1647 2015-08-20
Red Hat Enterprise Linux 5 (mysql55-mysql) RHSA-2015:1628 2015-08-17
Red Hat Software Collections for Red Hat Enterprise Linux 7 (mysql55-mysql) RHSA-2015:1629 2015-08-17
Red Hat Enterprise Linux 7 (mariadb) RHSA-2015:1665 2015-08-24
Red Hat Software Collections for Red Hat Enterprise Linux 6 (mysql55-mysql) RHSA-2015:1629 2015-08-17
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-mysql56-mysql) RHSA-2015:1630 2015-08-17

Affected Packages State

Platform Package State
Red Hat OpenStack Platform 9.0 mariadb-galera Will not fix
Red Hat OpenStack Platform 8.0 (Liberty) mariadb-galera Will not fix
Red Hat OpenStack Platform 12.0 mariadb-galera Will not fix
Red Hat OpenStack Platform 11.0 (Ocata) mariadb-galera Will not fix
Red Hat OpenStack Platform 10 mariadb-galera Will not fix
Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 mariadb-galera Will not fix
Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7 mariadb-galera Will not fix
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) mariadb-galera Will not fix

External References

Last Modified

CVE description copyright © 2017, The MITRE Corporation