Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDebian
OSDebian8.0MariaDB
APPMariadb10.1.0 – 10.1.17 (bez)10.0.0 – 10.0.27 (bez)5.5.20 – 5.5.51 (bez)Oracle MySQL
APPOracle5.5.0 – 5.5.525.6.0 – 5.6.335.7.0 – 5.7.15Percona Server
APPPercona5.7 – 5.7.14-7 (bez)5.6 – 5.6.32-78.0 (bez)5.5 – 5.5.51-38.1 (bez)Red Hat Enterprise Linux
OSRedhat7.0Red Hat Enterprise Linux Desktop
OSRedhat6.07.0Red Hat Enterprise Linux Server
OSRedhat6.0Red Hat Enterprise Linux Server Aus
OSRedhat7.37.47.6Red Hat Enterprise Linux Server Eus
OSRedhat7.37.47.57.6Red Hat Enterprise Linux Server Tus
OSRedhat7.37.6Red Hat Enterprise Linux Workstation
OSRedhat6.07.0Red Hat Openstack
APPRedhat5.06.07.089
Powiązane podatności
GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
RCE przez deserializację PHP w Roundcube Webmail (parametr _from)
Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)
Apple WebKit: out-of-bounds write umożliwiający ucieczkę z sandbox przeglądarki