{"id":"CVE-2016-0644","details":"Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DDL.","modified":"2026-02-24T01:12:25.193234Z","published":"2016-04-21T10:59:13.787Z","related":["SUSE-RU-2023:3956-1","SUSE-RU-2023:4991-1","SUSE-SU-2016:1279-1","SUSE-SU-2016:1619-1","SUSE-SU-2016:1620-1","openSUSE-SU-2024:10200-1"],"references":[{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-0705.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1480.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1481.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1602.html"},{"type":"ADVISORY","url":"http://www-01.ibm.com/support/docview.wss?uid=isg3T1024168"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3557"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3595"},{"type":"ADVISORY","url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"},{"type":"ADVISORY","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/86442"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1035606"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2953-1"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2016:1132"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-10024-release-notes/"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-10112-release-notes/"},{"type":"ADVISORY","url":"https://mariadb.com/kb/en/mariadb/mariadb-5548-release-notes/"},{"type":"FIX","url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"},{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html"},{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html"},{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html"},{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html"},{"type":"ARTICLE","url":"http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mariadb/server","events":[{"introduced":"5a6300dcc45da2d6c2b046560da0580548354b93"},{"fixed":"3042d655e2c20dccf00fba6a64f72385330d2b7a"},{"introduced":"776555af021e917ce0d6235386b43ae59fdd5161"},{"fixed":"01897db10203312ccd20f2b76ba957825ccef613"},{"introduced":"b11c4651917bd4472ea8837c64e6d1072a2a19e9"},{"fixed":"b05158cc10a75196b5c0bf8dad9360608a2dd5b9"}]}],"database_specific":{"vanir_signatures":[{"source":"https://github.com/mariadb/server/commit/b05158cc10a75196b5c0bf8dad9360608a2dd5b9","signature_type":"Line","deprecated":false,"target":{"file":"sql/sql_select.cc"},"id":"CVE-2016-0644-6f7ab738","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["274298000087880993560015421704917208476","139145636241216056385508861118446489286","338449612803683363914571601868732314234","269103915272444797243883319290725278457"]}},{"source":"https://github.com/mariadb/server/commit/3042d655e2c20dccf00fba6a64f72385330d2b7a","signature_type":"Line","deprecated":false,"target":{"file":"sql/wsrep_check_opts.cc"},"id":"CVE-2016-0644-8c71d862","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["193786995896138644546200787675647921012","166713089033962681797588071675178541431","37799187695103655341605433673084446410","103640034759513855950389289434218744805"]}}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-0644.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/mysql/mysql-server","events":[{"introduced":"863a73b80b83801a14b416006e64cf892837a657"},{"fixed":"93a6142dd0c0c8b2e0683e4d57082582eac91fdb"}]}],"versions":["mysql-5.0.96","mysql-5.1.61","mysql-5.1.62","mysql-5.1.63","mysql-5.1.65","mysql-5.1.66","mysql-5.1.67","mysql-5.1.68","mysql-5.1.69","mysql-5.1.69-retag","mysql-5.1.70","mysql-5.1.71","mysql-5.1.72","mysql-5.1.73","mysql-5.1.74","mysql-5.1.75","mysql-5.1.76","mysql-5.1.77","mysql-5.5.20","mysql-5.5.21","mysql-5.5.22","mysql-5.5.23","mysql-5.5.24","mysql-5.5.25","mysql-5.5.25a","mysql-5.5.27","mysql-5.5.28","mysql-5.5.29","mysql-5.5.30","mysql-5.5.31","mysql-5.5.32","mysql-5.5.33","mysql-5.5.34","mysql-5.5.35","mysql-5.5.36","mysql-5.5.37","mysql-5.5.38","mysql-5.5.39","mysql-5.5.40","mysql-5.5.41","mysql-5.5.42","mysql-5.5.43","mysql-5.5.44","mysql-5.5.45","mysql-5.5.46","mysql-5.5.47"],"database_specific":{"vanir_signatures":[{"source":"https://github.com/mysql/mysql-server/commit/93a6142dd0c0c8b2e0683e4d57082582eac91fdb","signature_type":"Line","deprecated":false,"target":{"file":"storage/innobase/buf/buf0flu.c"},"id":"CVE-2016-0644-7366fb8d","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["70944286196790103913235935046485175129","70216736230457630044913030527495888989","234715019206600995395395222423194408578","232126951106032907535935331544487284708","200232940830908561830841644863696919182"]}},{"source":"https://github.com/mysql/mysql-server/commit/93a6142dd0c0c8b2e0683e4d57082582eac91fdb","signature_type":"Line","deprecated":false,"target":{"file":"storage/innobase/srv/srv0srv.c"},"id":"CVE-2016-0644-96396242","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["101618810264590050332860595868827487828","151684181180313039129960101383182994884","245723464035028011391222552709459444000","200158032217569512795301531542981901708","167412436514908738347579721415132230937","114731481270423150548293400924664004313","126927749514388854555249755074356036374","299913887995491286320469046083681187389","204058529217883360154382064572680149094","292398400697841792237378782961741064660","253405681862239406781542629497795693831","20453322842544021734317470372247290844","135469071627134196195743088104119986545","125390321843579766155298245939321224306","133784874913285018020895797509124548688","316130965776004554812004803718833283219","204795600828567315257287083588839829389"]}},{"source":"https://github.com/mysql/mysql-server/commit/93a6142dd0c0c8b2e0683e4d57082582eac91fdb","signature_type":"Function","deprecated":false,"target":{"function":"buf_flush_stat_update","file":"storage/innobase/buf/buf0flu.c"},"id":"CVE-2016-0644-c6a211c8","signature_version":"v1","digest":{"function_hash":"148682213127556972962097231534381503457","length":645}}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-0644.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}