CVE-2015-0432 - Vulnerability Details

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:S/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Canonical	Ubuntu Linux
Debian	Debian Linux
Fedoraproject	Fedora
Mariadb	Mariadb
Oracle	Mysql Solaris
Redhat	Enterprise Linux Enterprise Linux Desktop Enterprise Linux Hpc Node Enterprise Linux Server Enterprise Linux Workstation Openstack Rhel Software Collections
Suse	Linux Enterprise Desktop Linux Enterprise Server Linux Enterprise Software Development Kit Linux Enterprise Workstation Extension

Configuration 1 [-]

cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
	cpe:2.3:o:debian:debian_linux:7.0:::::::*

Configuration 3 [-]

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Configuration 4 [-]

OR	cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

Configuration 5 [-]

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Configuration 6 [-]

OR	cpe:2.3:o:suse:linux_enterprise_desktop:12:-::::::
	cpe:2.3:o:suse:linux_enterprise_server:12:-::::::
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-::::::
	cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-::::::

Configuration 7 [-]

OR	cpe:2.3:a:mariadb:mariadb::::::::
	cpe:2.3:a:mariadb:mariadb::::::::

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 5
mysql55-mysql-0:5.5.45-1.el5	cpe:/o:redhat:enterprise_linux:5	RHSA-2015:1628	2015-08-17T00:00:00Z
Red Hat Enterprise Linux 7
mariadb-1:5.5.41-2.el7_0	cpe:/o:redhat:enterprise_linux:7	RHSA-2015:0118	2015-02-03T00:00:00Z
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6
ceph-0:0.80.5-4.el6ost	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
mariadb-galera-0:5.5.41-1.el6ost	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
openstack-utils-0:2014.2-1.el6ost	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
python-novaclient-1:2.17.0-4.el6ost	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
python-requests-0:2.3.0-1.el6	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
python-sqlalchemy-0:0.8.4-2.el6ost	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
python-urllib3-0:1.8.2-4.1.el6	cpe:/a:redhat:openstack:5::el6	RHBA-2015:0820	2015-04-16T00:00:00Z
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7
mariadb-galera-1:5.5.41-2.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
openstack-sahara-0:2014.1.3-3.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
openstack-selinux-0:0.6.25-1.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
openstack-utils-0:2014.2-1.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
python-novaclient-1:2.17.0-4.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
python-requests-0:2.3.0-3.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
python-sqlalchemy-0:0.8.4-2.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
python-urllib3-0:1.8.2-5.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
rabbitmq-server-0:3.3.5-3.el7ost	cpe:/a:redhat:openstack:5::el7	RHBA-2015:0825	2015-04-16T00:00:00Z
Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7
diskimage-builder-0:0.1.34-21.el7ost	cpe:/a:redhat:openstack:6::el7	RHBA-2015:0928	2015-05-05T00:00:00Z
mariadb-galera-1:5.5.41-2.el7ost	cpe:/a:redhat:openstack:6::el7	RHBA-2015:0928	2015-05-05T00:00:00Z
openstack-selinux-0:0.6.29-1.el7ost	cpe:/a:redhat:openstack:6::el7	RHBA-2015:0928	2015-05-05T00:00:00Z
openstack-trove-0:2014.2.3-3.el7ost	cpe:/a:redhat:openstack:6::el7	RHBA-2015:0928	2015-05-05T00:00:00Z
redhat-access-plugin-openstack-0:6.0.3-1.el7ost	cpe:/a:redhat:openstack:6::el7	RHBA-2015:0928	2015-05-05T00:00:00Z
Red Hat Software Collections 1 for Red Hat Enterprise Linux 6
mysql55-mysql-0:5.5.41-2.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0116	2015-02-03T00:00:00Z
mariadb55-mariadb-0:5.5.41-12.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0117	2015-02-03T00:00:00Z
Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.4 EUS
mysql55-mysql-0:5.5.41-2.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0116	2015-02-03T00:00:00Z
mariadb55-mariadb-0:5.5.41-12.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0117	2015-02-03T00:00:00Z
Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.5 EUS
mysql55-mysql-0:5.5.41-2.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0116	2015-02-03T00:00:00Z
mariadb55-mariadb-0:5.5.41-12.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0117	2015-02-03T00:00:00Z
Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.6 EUS
mysql55-mysql-0:5.5.41-2.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0116	2015-02-03T00:00:00Z
mariadb55-mariadb-0:5.5.41-12.el6	cpe:/a:redhat:rhel_software_collections:1::el6	RHSA-2015:0117	2015-02-03T00:00:00Z
Red Hat Software Collections 1 for Red Hat Enterprise Linux 7
mysql55-mysql-0:5.5.41-2.el7	cpe:/a:redhat:rhel_software_collections:1::el7	RHSA-2015:0116	2015-02-03T00:00:00Z
mariadb55-mariadb-0:5.5.41-12.el7	cpe:/a:redhat:rhel_software_collections:1::el7	RHSA-2015:0117	2015-02-03T00:00:00Z

References

Link	Providers
http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
http://rhn.redhat.com/errata/RHSA-2015-0116.html
http://rhn.redhat.com/errata/RHSA-2015-0117.html
http://rhn.redhat.com/errata/RHSA-2015-0118.html
http://rhn.redhat.com/errata/RHSA-2015-1628.html
http://secunia.com/advisories/62728
http://secunia.com/advisories/62730
http://secunia.com/advisories/62732
http://www.debian.org/security/2015/dsa-3135
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL
http://www.securityfocus.com/bid/72217
http://www.securitytracker.com/id/1031581
http://www.ubuntu.com/usn/USN-2480-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/100187
https://nvd.nist.gov/vuln/detail/CVE-2015-0432
https://security.gentoo.org/glsa/201504-05
https://www.cve.org/CVERecord?id=CVE-2015-0432

History

No history.

MITRE

Status: PUBLISHED

Assigner: oracle

Published: 2015-01-21T19:00:00

Updated: 2024-08-06T04:10:10.442Z

Reserved: 2014-12-17T00:00:00

Link: CVE-2015-0432

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-01-21T19:59:17.797

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-0432

Redhat

Severity : Moderate

Publid Date: 2015-01-21T00:00:00Z

Links: CVE-2015-0432 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-07T15:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle"}, "references": [{"name": "RHSA-2015:0118", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0118.html"}, {"name": "DSA-3135", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2015/dsa-3135"}, {"name": "RHSA-2015:0116", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0116.html"}, {"name": "USN-2480-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2480-1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"}, {"name": "SUSE-SU-2015:0743", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"}, {"name": "RHSA-2015:1628", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-1628.html"}, {"name": "62732", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/62732"}, {"name": "RHSA-2015:0117", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0117.html"}, {"name": "oracle-cpujan2015-cve20150432(100187)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100187"}, {"name": "1031581", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031581"}, {"name": "GLSA-201504-05", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201504-05"}, {"name": "62728", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/62728"}, {"name": "FEDORA-2015-1162", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html"}, {"name": "62730", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/62730"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"}, {"name": "72217", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/72217"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2015-0432", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "RHSA-2015:0118", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0118.html"}, {"name": "DSA-3135", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2015/dsa-3135"}, {"name": "RHSA-2015:0116", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0116.html"}, {"name": "USN-2480-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2480-1"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"name": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"}, {"name": "SUSE-SU-2015:0743", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"}, {"name": "RHSA-2015:1628", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-1628.html"}, {"name": "62732", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/62732"}, {"name": "RHSA-2015:0117", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0117.html"}, {"name": "oracle-cpujan2015-cve20150432(100187)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100187"}, {"name": "1031581", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031581"}, {"name": "GLSA-201504-05", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201504-05"}, {"name": "62728", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/62728"}, {"name": "FEDORA-2015-1162", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html"}, {"name": "62730", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/62730"}, {"name": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"}, {"name": "72217", "refsource": "BID", "url": "http://www.securityfocus.com/bid/72217"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:10:10.442Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2015:0118", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0118.html"}, {"name": "DSA-3135", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2015/dsa-3135"}, {"name": "RHSA-2015:0116", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0116.html"}, {"name": "USN-2480-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2480-1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"}, {"name": "SUSE-SU-2015:0743", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"}, {"name": "RHSA-2015:1628", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-1628.html"}, {"name": "62732", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/62732"}, {"name": "RHSA-2015:0117", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0117.html"}, {"name": "oracle-cpujan2015-cve20150432(100187)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100187"}, {"name": "1031581", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031581"}, {"name": "GLSA-201504-05", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201504-05"}, {"name": "62728", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/62728"}, {"name": "FEDORA-2015-1162", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html"}, {"name": "62730", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/62730"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"}, {"name": "72217", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/72217"}]}]}, "cveMetadata": {"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2015-0432", "datePublished": "2015-01-21T19:00:00", "dateReserved": "2014-12-17T00:00:00", "dateUpdated": "2024-08-06T04:10:10.442Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*", "matchCriteriaId": "79A602C5-61FE-47BA-9786-F045B6C6DBA8", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*", "matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*", "matchCriteriaId": "49A63F39-30BE-443F-AF10-6245587D3359", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "matchCriteriaId": "390E3C4E-6B4D-4C58-8B4C-1D386EA405D9", "versionEndIncluding": "5.5.40", "versionStartIncluding": "5.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "133AAFA7-AF42-4D7B-8822-AA2E85611BF5", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "3C84489B-B08C-4854-8A12-D01B6E45CF79", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "54D669D4-6D7E-449D-80C1-28FA44F06FFE", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "D0AC5CD5-6E58-433C-9EB3-6DFE5656463E", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*", "matchCriteriaId": "FF47C9F0-D8DA-4B55-89EB-9B2C9383ADB9", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*", "matchCriteriaId": "D2DF4815-B8CB-4AD3-B91D-2E09A8E318E9", "vulnerable": true}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*", "matchCriteriaId": "15FC9014-BD85-4382-9D04-C0703E901D7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*", "matchCriteriaId": "1831D45A-EE6E-4220-8F8C-248B69520948", "vulnerable": true}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*", "matchCriteriaId": "028ABA8F-4E7B-4CD0-B6FC-3A0941E254BA", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*", "matchCriteriaId": "2369490D-1828-42D9-98F9-7785717428D2", "versionEndExcluding": "5.5.41", "versionStartIncluding": "5.5.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*", "matchCriteriaId": "FCD8904B-4692-403C-B0AA-C972D08C2FA8", "versionEndExcluding": "10.0.16", "versionStartIncluding": "10.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle MySQL Server 5.5.40 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a trav\u00e9s de vectores relacionados con Server : InnoDB : DDL : Foreign Key."}], "id": "CVE-2015-0432", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-01-21T19:59:17.797", "references": [{"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html"}, {"source": "secalert_us@oracle.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0116.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0117.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0118.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-1628.html"}, {"source": "secalert_us@oracle.com", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62728"}, {"source": "secalert_us@oracle.com", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62730"}, {"source": "secalert_us@oracle.com", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62732"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2015/dsa-3135"}, {"source": "secalert_us@oracle.com", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"}, {"source": "secalert_us@oracle.com", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"}, {"source": "secalert_us@oracle.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/72217"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1031581"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2480-1"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100187"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/201504-05"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/149929.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0116.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0117.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0118.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2015-1628.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62728"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62730"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/62732"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2015/dsa-3135"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/72217"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1031581"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2480-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100187"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/201504-05"}], "sourceIdentifier": "secalert_us@oracle.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2015:1628", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "mysql55-mysql-0:5.5.45-1.el5", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2015-08-17T00:00:00Z"}, {"advisory": "RHSA-2015:0118", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "mariadb-1:5.5.41-2.el7_0", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "ceph-0:0.80.5-4.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "mariadb-galera-0:5.5.41-1.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "openstack-utils-0:2014.2-1.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "python-novaclient-1:2.17.0-4.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "python-requests-0:2.3.0-1.el6", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "python-sqlalchemy-0:0.8.4-2.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0820", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "python-urllib3-0:1.8.2-4.1.el6", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "mariadb-galera-1:5.5.41-2.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "openstack-sahara-0:2014.1.3-3.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "openstack-selinux-0:0.6.25-1.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "openstack-utils-0:2014.2-1.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "python-novaclient-1:2.17.0-4.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "python-requests-0:2.3.0-3.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "python-sqlalchemy-0:0.8.4-2.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "python-urllib3-0:1.8.2-5.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0825", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "rabbitmq-server-0:3.3.5-3.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHBA-2015:0928", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "diskimage-builder-0:0.1.34-21.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-05-05T00:00:00Z"}, {"advisory": "RHBA-2015:0928", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "mariadb-galera-1:5.5.41-2.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-05-05T00:00:00Z"}, {"advisory": "RHBA-2015:0928", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "openstack-selinux-0:0.6.29-1.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-05-05T00:00:00Z"}, {"advisory": "RHBA-2015:0928", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "openstack-trove-0:2014.2.3-3.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-05-05T00:00:00Z"}, {"advisory": "RHBA-2015:0928", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-05-05T00:00:00Z"}, {"advisory": "RHSA-2015:0116", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mysql55-mysql-0:5.5.41-2.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0117", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mariadb55-mariadb-0:5.5.41-12.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0116", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mysql55-mysql-0:5.5.41-2.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.4 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0117", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mariadb55-mariadb-0:5.5.41-12.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.4 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0116", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mysql55-mysql-0:5.5.41-2.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.5 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0117", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mariadb55-mariadb-0:5.5.41-12.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.5 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0116", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mysql55-mysql-0:5.5.41-2.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.6 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0117", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el6", "package": "mariadb55-mariadb-0:5.5.41-12.el6", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 6.6 EUS", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0116", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el7", "package": "mysql55-mysql-0:5.5.41-2.el7", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 7", "release_date": "2015-02-03T00:00:00Z"}, {"advisory": "RHSA-2015:0117", "cpe": "cpe:/a:redhat:rhel_software_collections:1::el7", "package": "mariadb55-mariadb-0:5.5.41-12.el7", "product_name": "Red Hat Software Collections 1 for Red Hat Enterprise Linux 7", "release_date": "2015-02-03T00:00:00Z"}], "bugzilla": {"description": "mysql: unspecified vulnerability related to Server:InnoDB:DDL:Foreign Key (CPU Jan 2015)", "id": "1184561", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184561"}, "csaw": false, "cvss": {"cvss_base_score": "4.0", "cvss_scoring_vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "status": "verified"}, "details": ["Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key."], "name": "CVE-2015-0432", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Affected", "package_name": "mysql", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2015-01-21T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2015-0432\nhttps://nvd.nist.gov/vuln/detail/CVE-2015-0432\nhttp://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"], "threat_severity": "Moderate"}

Metrics

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object