Summary: | dev-db/mysql: 5.x privilege escalation + bypass security restriction | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Raphael Marichez (Falco) (RETIRED) <falco> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | mysql-bugs |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/advisories/21506/ | ||
Whiteboard: | ~3/4(?) [noglsa] Falco | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 144999 |
Description
Raphael Marichez (Falco) (RETIRED)
2006-08-17 06:20:50 UTC
It's already fixed in upstream CVS. Should we use the patch or wait for 5.0.25? Lets wait for the upstream release. dev-db/mysql-5.0.26 is in the tree which fixes those problems (5.0.25 wasn't released to the wide public, only to commercial customers). The bug can be closed I think since no mysql-5 version is stable yet. Best regards, CHTEKK. gracious stealth ping to the understaffed security team thanks vivo ;-) closing this without GLSA, since mysql 5.x is still marked ~arch |