{"id":"CVE-2016-0641","details":"Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect confidentiality and availability via vectors related to MyISAM.","modified":"2026-05-13T12:27:22.724680Z","published":"2016-04-21T10:59:10.883Z","related":["SUSE-RU-2023:3956-1","SUSE-RU-2023:4991-1","SUSE-SU-2016:1279-1","SUSE-SU-2016:1619-1","SUSE-SU-2016:1620-1","openSUSE-SU-2024:10200-1","openSUSE-SU-2024:11038-1"],"database_specific":{"unresolved_ranges":[{"cpe":"cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*","extracted_events":[{"last_affected":"42.1"}],"source":"CPE_FIELD"},{"cpe":"cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*","extracted_events":[{"last_affected":"7"}],"source":"CPE_FIELD"},{"cpe":"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*","extracted_events":[{"last_affected":"6.0"}],"source":"CPE_FIELD"},{"cpe":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","extracted_events":[{"last_affected":"7.0"}],"source":"CPE_FIELD"}]},"references":[{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-0705.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1480.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1481.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1602.html"},{"type":"ADVISORY","url":"http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3557"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3595"},{"type":"ADVISORY","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/86470"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1035606"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2953-1"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2016:1132"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-10024-release-notes/"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-10112-release-notes/"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-5548-release-notes/"},{"type":"FIX","url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mariadb-corporation/mariadb-connector-nodejs","events":[{"introduced":"0"},{"last_affected":"94331a4aeaacb1cdb4d1f001b1e85f8da9d69624"},{"last_affected":"3d3cdc6edf45b823828f3855b7232c3bd6dafa23"}],"database_specific":{"cpe":["cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:powerkvm:3.1:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"0"},{"last_affected":"2.1"},{"last_affected":"3.1"}],"source":"CPE_FIELD"}}],"versions":["3.1.0","3.0.0-ga","2.5.6","2.5.4","2.5.3","2.5.2","2.5.1","2.5.0","2.4.2","2.4.1","2.4.0","2.3.0","2.2.0","2.1.5","2.1.4","2.1.3","2.1.2","2.1.1","2.1.0","2.0.5","2.0.3","0.7.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-0641.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/mariadb/server","events":[{"introduced":"776555af021e917ce0d6235386b43ae59fdd5161"},{"fixed":"01897db10203312ccd20f2b76ba957825ccef613"},{"introduced":"c235de12ae3723b96944337bd89ad9cc87f21d8f"},{"fixed":"b05158cc10a75196b5c0bf8dad9360608a2dd5b9"}],"database_specific":{"cpe":"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"10.0.0"},{"fixed":"10.0.24"},{"introduced":"10.1.0"},{"fixed":"10.1.12"}],"source":"CPE_FIELD"}}],"versions":["mariadb-10.1.11","mariadb-10.1.10","mariadb-10.1.9","mariadb-10.1.8","mariadb-10.1.7","mariadb-10.1.6","mariadb-10.1.5","mariadb-10.1.4","mariadb-10.1.3","mariadb-10.1.2","mariadb-10.1.0"],"database_specific":{"vanir_signatures_modified":"2026-05-13T12:27:22Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-0641.json","vanir_signatures":[{"signature_type":"Line","id":"CVE-2016-0641-6f7ab738","deprecated":false,"target":{"file":"sql/sql_select.cc"},"source":"https://github.com/mariadb/server/commit/b05158cc10a75196b5c0bf8dad9360608a2dd5b9","digest":{"line_hashes":["274298000087880993560015421704917208476","139145636241216056385508861118446489286","338449612803683363914571601868732314234","269103915272444797243883319290725278457"],"threshold":0.9},"signature_version":"v1"}]}},{"ranges":[{"type":"GIT","repo":"https://github.com/mysql/mysql-server","events":[{"introduced":"0"},{"last_affected":"270fd3411e3d671a73ed9725940a30080f59ce6d"},{"last_affected":"9dba27386d59892dd400767f09a39d0e3e3179a8"},{"last_affected":"d04d7a8f844caf78f03c007243681a1b5471d0a3"},{"introduced":"54df0057e18d8c82c23fbd4e0bf5b5dc2e762955"},{"last_affected":"40ae1b9b618fbbc3b494a896a9d074b74e414337"},{"introduced":"863a73b80b83801a14b416006e64cf892837a657"},{"last_affected":"40ae1b9b618fbbc3b494a896a9d074b74e414337"}],"database_specific":{"cpe":["cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*","cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"0"},{"last_affected":"8.0"},{"introduced":"5.6.0"},{"last_affected":"5.6.28"},{"introduced":"5.7.0"},{"last_affected":"5.7.10"},{"introduced":"5.5.0"},{"last_affected":"5.5.47"},{"introduced":"5.5.20"},{"last_affected":"5.5.47"}],"source":"CPE_FIELD"}}],"versions":["mysql-8.0.0","mysql-5.7.10","mysql-5.5.47","mysql-5.6.28","mysql-5.5.44","mysql-5.5.27","mysql-5.5.25","mysql-5.5.23","mysql-5.5.19","mysql-5.5.15","mysql-5.1.4","mysql-4.0.4","mysql-4.0.2","mysql-3.23.36","mysql-3.23.33","mysql-3.23.32","mysql-3.23.31","mysql-3.23.30-gamma","mysql-3.23.28-gamma","mysql-3.23.22-beta"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-0641.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H"}]}