tags 480292 +patch
quit
Here's a patch I'm building for an Etch update to address the problem. It's
pretty close to the same one used in the first fix to this bug, except that it
adds a call to realpath() to resolve all components of the path, and fixes the
argument passing so as not to throw the
On Fri, Jul 04, 2008 at 02:56:00PM +0200, Tomas Hoger wrote:
> Looks like upstream patch is incomplete. Have you already notified
> upstream about the problem?
Not yet -- I still need to hand verify it against a pristine upstream; it's
reproducible with 5.0.51a from Sid, but the implementation of
Hi Devin!
Looks like upstream patch is incomplete. Have you already notified
upstream about the problem?
> In terms of exploitability, this allows any user with permissions to
> create tables in a db the ability to read from, write to and delete
> tables from any other database within the same m
reopen 480292
quit
I don't believe that the patch applied to address this bug was sufficient. In
preparing the stable update I initially applied it, before finding two things:
First, fn_format() only calls readlink() once on the entire path, not on any
component thereof; hence it will only actua
Package: mysql-server-5.0
Severity: grave
Tags: security
Justification: user security hole
Hi
The following CVE(0) has been issued against mysql.
CVE-2008-2079:
MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and
6.0.x before 6.0.5 allows local users to bypass certain privi
5 matches
Mail list logo