CVE-2015-2620

NameCVE-2015-2620
DescriptionUnspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-359-1, DSA-3308-1
Debian Bugs792445

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
mariadb-10.0sourcejessie10.0.20-0+deb8u1
mariadb-10.0source(unstable)10.0.20-1
mysql-5.5sourcesqueeze5.5.46-0+deb6u1DLA-359-1
mysql-5.5sourcewheezy5.5.44-0+deb7u1DSA-3308-1
mysql-5.5sourcejessie5.5.44-0+deb8u1DSA-3308-1
mysql-5.5source(unstable)(unfixed)792445
mysql-5.6source(unstable)5.6.25-2

Notes

Possibly related to https://github.com/mysql/mysql-server/commit/fdae90dd
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html#AppendixMSQL

Search for package or bug name: Reporting problems