CVE-2017-10283 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2017-10283 Interim 1 14 2023-12-09T01:03:11Z current 2021-05-30T13:58:06Z 2023-12-09T01:03:11Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2017-10283 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Z7DVWELHOI3HIW2TCX7MRYG6JIMYW4R2/#Z7DVWELHOI3HIW2TCX7MRYG6JIMYW4R2 E-Mail link for openSUSE-SU-2017:2868-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client18 libmysql55client18-32bit libmysql55client_r18 libmysql55client_r18-32bit libmysqlclient15 libmysqlclient15-32bit libmysqlclient_r15 mysql mysql-client mysql-tools libmysql55client18 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client18-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client_r18 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client_r18-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient15 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient15-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient_r15 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql-client as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql-tools as a component of SUSE Linux Enterprise Server 11 SP4-LTSS Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H). CVE-2017-10283 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client18 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client18-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client_r18 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client_r18-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient15 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient15-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient_r15 SUSE Linux Enterprise Server 11 SP4-LTSS:mysql SUSE Linux Enterprise Server 11 SP4-LTSS:mysql-client SUSE Linux Enterprise Server 11 SP4-LTSS:mysql-tools moderate 4.9 AV:N/AC:H/Au:S/C:N/I:N/A:C 5.3 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H