Security fix: A malformed password packet in the connection protocol could cause the server to crash. Thanks for Dormando for reporting this bug and providing details and a proof of concept. (Bug#28984) Security Fix: CREATE TABLE LIKE did not require any privileges on the source table. Now it requires the SELECT privilege. (Bug#25578) Security fix: Use of a view could allow a user to gain update privileges for tables in other databases. (Bug#27878) Security fix: If a stored routine was declared using SQL SECURITY INVOKER, a user who invoked the routine could gain privileges. (Bug#27337) Security fix: The requirement of the DROP privilege for RENAME TABLE was not being enforced. (Bug#27515) Reproducible: Always
*** This bug has been marked as a duplicate of bug 185333 ***