[CVS] OpenPKG: OPENPKG_1_1_SOLID: openpkg-src/mysql/ mysql-sec.patch m...

Wed, 29 Jan 2003 03:38:23 -0800 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Thomas Lotterer
  Root:   /e/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   29-Jan-2003 12:38:52
  Branch: OPENPKG_1_1_SOLID                Handle: 2003012911385100

  Modified files:           (Branch: OPENPKG_1_1_SOLID)
    openpkg-src/mysql       mysql-sec.patch mysql.spec

  Log:
    OpenPKG-SA-2003.008

  Summary:
    Revision    Changes     Path
    1.1.2.2     +18 -0      openpkg-src/mysql/mysql-sec.patch
    1.33.2.3    +1  -1      openpkg-src/mysql/mysql.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/mysql/mysql-sec.patch
  ============================================================================
  $ cvs diff -u -r1.1.2.1 -r1.1.2.2 mysql-sec.patch
  --- openpkg-src/mysql/mysql-sec.patch 16 Dec 2002 07:22:06 -0000      1.1.2.1
  +++ openpkg-src/mysql/mysql-sec.patch 29 Jan 2003 11:38:51 -0000      1.1.2.2
  @@ -176,3 +176,21 @@
          char* db = sql_alloc(db_len + tbl_len + 2);
          memcpy(db, data + 1, db_len);
          char* tbl_name = db + db_len;
  +--- mysql-3.23.52/sql/sql_parse.cc   Wed Jan 29 12:08:03 2003
  ++++ mysql-3.23.55/sql/sql_parse.cc   Wed Jan 29 12:23:57 2003
  +@@ -794,6 +794,7 @@
  +     char *save_user=            thd->user;
  +     char *save_priv_user=   thd->priv_user;
  +     char *save_db=      thd->db;
  ++    thd->user=0;
  + 
  +     if ((uint) ((uchar*) db - net->read_pos) > packet_length)
  +     {                                               // Check if protocol is ok
  +@@ -803,7 +804,6 @@
  +     if (check_user(thd, COM_CHANGE_USER, user, passwd, db, 0))
  +     {                                               // Restore old user
  +       x_free(thd->user);
  +-      x_free(thd->db);
  +       thd->master_access=save_master_access;
  +       thd->db_access=save_db_access;
  +       thd->db=save_db;
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/mysql/mysql.spec
  ============================================================================
  $ cvs diff -u -r1.33.2.2 -r1.33.2.3 mysql.spec
  --- openpkg-src/mysql/mysql.spec      16 Dec 2002 07:22:06 -0000      1.33.2.2
  +++ openpkg-src/mysql/mysql.spec      29 Jan 2003 11:38:51 -0000      1.33.2.3
  @@ -46,7 +46,7 @@
   Group:        Database
   License:      GPL
   Version:      3.23.52
  -Release:      1.1.1
  +Release:      1.1.2
   
   #   list of sources
   Source0:      
http://sunsite.informatik.rwth-aachen.de/mysql/Downloads/MySQL-3.23/mysql-%{version}.tar.gz
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [EMAIL PROTECTED]

Reply via email to