CVE issued this morning : http://seclists.org/oss-sec/2016/q3/481
detailed: http://seclists.org/oss-sec/2016/q3/att-482/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.txt
Percona has already issued patches. Most other vendors however: not yet.
