Vulnerability Change Records for CVE-2015-4870

Change History

CVE Modified by MITRE 12/07/2016 1:14:46 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00010.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html [No Types Assigned]
Added Reference

								
							
							
						
http://www.debian.org/security/2015/dsa-3385 [No Types Assigned]

CPE Deprecation Remap 12/27/2019 11:9:04 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:oracle:linux:7.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*

CVE Modified by MITRE 11/30/2016 10:0:06 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://packetstormsecurity.com/files/137232/MySQL-Procedure-Analyse-Denial-Of-Service.html [No Types Assigned]

Modified Analysis 9/13/2016 1:52:58 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
Configuration 1
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_workstation_extension:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:12.0:sp1:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 4
     OR
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 5
     OR
          *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
Changed Reference Type
http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html No Types Assigned
http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-0534.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-0534.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-0705.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-0705.html Third Party Advisory
Changed Reference Type
https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html No Types Assigned
https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html Third Party Advisory

Initial CVE Analysis 10/22/2015 10:22:18 AM

Action Type Old Value New Value

CVE Modified by MITRE 12/23/2016 9:59:25 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2015/dsa-3377 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1033894 [No Types Assigned]
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-2781-1 [No Types Assigned]

CVE Modified by Source 4/11/2016 9:59:18 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-updates/2016-02/msg00039.html
Added Reference

								
							
							
						
https://www.suse.com/support/update/announcement/2016/suse-su-20160296-1.html

CVE Modified by Source 4/12/2016 9:59:16 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-0534.html

CVE Modified by Source 4/06/2016 10:1:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
Removed Reference
http://www.oracle.com/technetwork/topics/security/alerts-086861.html

								
						

Modified Analysis 2/11/2019 12:48:53 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions from (including) 5.5.0 up to (including) 5.5.45
     *cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions from (including) 5.6.0 up to (including) 5.6.26
Removed CPE Configuration
OR
     *cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions up to (including) 5.5.45
     *cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions up to (including) 5.6.26

								
						
Changed Reference Type
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html No Types Assigned
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html Mailing List, Third Party Advisory
Changed Reference Type
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00010.html No Types Assigned
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00010.html Mailing List, Third Party Advisory
Changed Reference Type
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html No Types Assigned
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00011.html Mailing List, Third Party Advisory
Changed Reference Type
http://packetstormsecurity.com/files/137232/MySQL-Procedure-Analyse-Denial-Of-Service.html No Types Assigned
http://packetstormsecurity.com/files/137232/MySQL-Procedure-Analyse-Denial-Of-Service.html Third Party Advisory, VDB Entry
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-1480.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-1480.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-1481.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-1481.html Third Party Advisory
Changed Reference Type
http://www.debian.org/security/2015/dsa-3377 No Types Assigned
http://www.debian.org/security/2015/dsa-3377 Third Party Advisory
Changed Reference Type
http://www.debian.org/security/2015/dsa-3385 No Types Assigned
http://www.debian.org/security/2015/dsa-3385 Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/77208 No Types Assigned
http://www.securityfocus.com/bid/77208 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1033894 No Types Assigned
http://www.securitytracker.com/id/1033894 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.ubuntu.com/usn/USN-2781-1 No Types Assigned
http://www.ubuntu.com/usn/USN-2781-1 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2016:1132 No Types Assigned
https://access.redhat.com/errata/RHSA-2016:1132 Third Party Advisory
Changed Reference Type
https://www.exploit-db.com/exploits/39867/ No Types Assigned
https://www.exploit-db.com/exploits/39867/ Third Party Advisory, VDB Entry

Modified Analysis 10/22/2015 11:10:36 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Added CWE

								
							
							
						
NVD-CWE-noinfo
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/alerts-086861.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/alerts-086861.html Advisory, Patch

CVE Modified by MITRE 1/04/2018 9:30:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-1480.html [No Types Assigned]
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-1481.html [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2016:1132 [No Types Assigned]

CVE Modified by MITRE 9/06/2017 9:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.exploit-db.com/exploits/39867/ [No Types Assigned]

CVE Modified by MITRE 12/05/2016 10:2:34 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html [No Types Assigned]

Modified Analysis 5/25/2016 1:56:29 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 1
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html Advisory, Patch

Modified Analysis 11/02/2016 2:29:00 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_workstation_extension:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:12.0:sp1:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 4
     OR
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 5
     OR
          *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
Configuration 1
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_workstation_extension:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:sp1:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_software_development_kit:12.0:sp1:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:o:oracle:linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Configuration 4
     OR
          *cpe:2.3:a:oracle:mysql:5.5.45:*:*:*:*:*:*:* (and previous)
          *cpe:2.3:a:oracle:mysql:5.6.26:*:*:*:*:*:*:* (and previous)
Configuration 5
     OR
          *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
Configuration 6
     OR
          *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html Vendor Advisory
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html Vendor Advisory

CVE Modified by MITRE 11/28/2016 2:30:38 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/77208 [No Types Assigned]

CPE Deprecation Remap 10/30/2018 12:27:32 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:novell:leap:42.1:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

CVE Modified by Source 10/03/2016 10:5:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

CVE Modified by Source 9/12/2016 9:59:24 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-0705.html