CVE-2017-3319

Name	CVE-2017-3319
Description	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: X Plugin). Supported versions that are affected are 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS v3.0 Base Score 3.1 (Confidentiality impacts).
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs	851235

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Debian Bugs
mysql-5.5	source	(unstable)	(not affected)
mysql-5.6	source	(unstable)	(not affected)
mysql-5.7	source	(unstable)	5.7.17-1	851235

Notes

- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)