Security update for mysql-connector-java SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:0967-1 Final 1 1 2015-05-24T17:30:03Z current 2015-05-24T17:30:03Z 2015-05-24T17:30:03Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mysql-connector-java mysql-connector-java was updated to 5.1.35 to fix one security issue and a number of bugs. The following vulnerability was fixed: * CVE-2015-2575: Difficult to exploit vulnerability allows successful authenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some MySQL Connectors accessible data as well as read access to a subset of MySQL Connectors accessible data. In addition, mysql-connector-java was updated to 5.1.35 to fix a number of upstream bugs, details of which listed in CHANGES as well as http://dev.mysql.com/doc/relnotes/connector-j/en/news-5-1.html The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2015-05/msg00089.html E-Mail link for openSUSE-SU-2015:0967-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings mysql-connector-java-5.1.35-3.1 Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J. CVE-2015-2575 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2015-05/msg00089.html https://www.suse.com/security/cve/CVE-2015-2575.html CVE-2015-2575 https://bugzilla.suse.com/927623 SUSE Bug 927623 https://bugzilla.suse.com/927981 SUSE Bug 927981