[LLSA 2004-04-16] Updated MySQL module fix security issue (mysql
4.0.18)
Jerry Lundström
prox at lunar-linux.org
Fri Apr 16 11:53:15 GMT 2004
- Previous message: [Lunar-commits] CVS: crater/x11/xorg-dri BUILD, NONE, 1.1
CONFIGURE, NONE, 1.1 DEPENDS, NONE, 1.1 DETAILS, NONE,
1.1 POST_INSTALL, NONE, 1.1 PRE_BUILD, NONE, 1.1
- Next message: [LLSA 2004-04-16] Updated MySQL module fix security issue (mysql
4.0.18)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
----------------------------------------------------------------------
Lunar Linux Security Advisory 2004-04-16
http://www.lunar-linux.org
security at lunar-linux.org
----------------------------------------------------------------------
Module : mysql 4.0.18
Vulnerability : medium
Effect : local symlink vulnerability
Lunar-specific : no
Reference : CAN-2004-0381 CAN-2004-0388
Description:
Symlink vulnerability found in mysqlbug/mysqlbug.sh and mysqld_multi
by Shaun Colley [http://www.nettwerked.co.uk/advisories/mysqlbug].
Solution:
Update module mysql to 4.0.18-1.
$ lin moonbase
$ lin mysql
Links:
http://www.mysql.com/
http://www.nettwerked.co.uk/advisories/mysqlbug
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0388
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
*pgp key*
-----END PGP SIGNATURE-----
- Previous message: [Lunar-commits] CVS: crater/x11/xorg-dri BUILD, NONE, 1.1
CONFIGURE, NONE, 1.1 DEPENDS, NONE, 1.1 DETAILS, NONE,
1.1 POST_INSTALL, NONE, 1.1 PRE_BUILD, NONE, 1.1
- Next message: [LLSA 2004-04-16] Updated MySQL module fix security issue (mysql
4.0.18)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Lunar-dev
mailing list