ALAS-2016-737


Amazon Linux AMI Security Advisory: ALAS-2016-737
Advisory Release Date: 2016-08-17 13:30 Pacific
Severity: Important

Issue Overview:

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote administrators to affect availability via vectors related to Server: RBR. (CVE-2016-5440 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. (CVE-2016-3459 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote administrators to affect availability via vectors related to Server: Privileges. (CVE-2016-5439 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser. (CVE-2016-3477 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption. (CVE-2016-3614 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote authenticated users to affect availability via vectors related to Server: DML. (CVE-2016-3615 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types. (CVE-2016-3521 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS. (CVE-2016-3486 )

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. (CVE-2016-3501 )


Affected Packages:

mysql56


Issue Correction:
Run yum update mysql56 to update your system.

New Packages:
i686:
    mysql56-common-5.6.32-1.16.amzn1.i686
    mysql56-test-5.6.32-1.16.amzn1.i686
    mysql56-devel-5.6.32-1.16.amzn1.i686
    mysql56-libs-5.6.32-1.16.amzn1.i686
    mysql56-server-5.6.32-1.16.amzn1.i686
    mysql56-5.6.32-1.16.amzn1.i686
    mysql56-embedded-devel-5.6.32-1.16.amzn1.i686
    mysql56-errmsg-5.6.32-1.16.amzn1.i686
    mysql56-debuginfo-5.6.32-1.16.amzn1.i686
    mysql56-embedded-5.6.32-1.16.amzn1.i686
    mysql56-bench-5.6.32-1.16.amzn1.i686

src:
    mysql56-5.6.32-1.16.amzn1.src

x86_64:
    mysql56-test-5.6.32-1.16.amzn1.x86_64
    mysql56-libs-5.6.32-1.16.amzn1.x86_64
    mysql56-5.6.32-1.16.amzn1.x86_64
    mysql56-devel-5.6.32-1.16.amzn1.x86_64
    mysql56-embedded-5.6.32-1.16.amzn1.x86_64
    mysql56-errmsg-5.6.32-1.16.amzn1.x86_64
    mysql56-server-5.6.32-1.16.amzn1.x86_64
    mysql56-embedded-devel-5.6.32-1.16.amzn1.x86_64
    mysql56-bench-5.6.32-1.16.amzn1.x86_64
    mysql56-common-5.6.32-1.16.amzn1.x86_64
    mysql56-debuginfo-5.6.32-1.16.amzn1.x86_64