Re: [Maria-discuss] Critical Update for CVE-2016-6662

[Reinis Rozitis]

a service itself *must not* have the permissions to write it's config 
files

The safeguard script also reads configuration files from MySQLs data 
directory which is writable by the service.
Though the author also cowers cases of bad configuration and possible 
victims.


"Root-Code-Execution" is clickbait

Since when a CVE is a clickbait ..

rr 


_______________________________________________
Mailing list: https://launchpad.net/~maria-discuss
Post to     : maria-discuss@lists.launchpad.net
Unsubscribe : https://launchpad.net/~maria-discuss
More help   : https://help.launchpad.net/ListHelp