mysql-dfsg-5.0 5.0.22-0ubuntu6.06.6 source package in Ubuntu
Changelog
mysql-dfsg-5.0 (5.0.22-0ubuntu6.06.6) dapper-security; urgency=low
* SECURITY UPDATE: denial of service via crafted CONTAINS operation when
using InnoDB
* debian/patches/98_SECURITY_CVE-2007-5925.dpatch: make sure innodb returns
error on unsupported operations (db0err.h, page0cur.h, ha_innodb.cc). Also
updated mysqld_error.h, mysqld_ername.h and errmsg.txt for the new
returned error
* SECURITY UPDATE: privilege escalation using symlinks when using DATA
DIRECTORY and INDEX DIRECTORY options via a RENAME TABLE statement
* debian/patches/98_SECURITY_CVE-2007-5969.dpatch: fix for my_symlink2.c to
properly check symlinks when performing a rename operation
* SECURITY UPDATE: denial of service via SHOW TABLE STATUS query in
federated engine
* debian/patches/98_SECURITY_CVE-2007-6304.dpatch: fix for ha_federated.cc
to to return error if the response doesn't have enough columns
* SECURITY UPDATE: information disclosure when using CREATE TABLE LIKE
statements
* debian/patches/98_SECURITY_CVE-2007-3781.dpatch: fix to enforce access
privileges (sql_parse.cc, handler.h, sql_yacc.yy)
* debian/control: Build-Depends on bison
* References
CVE-2007-5925
CVE-2007-5969
CVE-2007-6304
CVE-2007-3781
LP #172260
-- Jamie Strandboge <email address hidden> Wed, 19 Dec 2007 12:52:42 -0500
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Dapper
- Original maintainer:
- Christian Hammers
- Architectures:
- any
- Section:
- misc
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| mysql-dfsg-5.0_5.0.22.orig.tar.gz | 17.6 MiB | b1aa489bb44621a6b6209884a5afb3b4a92431219ca7282636f93c3e53ba2785 |
| mysql-dfsg-5.0_5.0.22-0ubuntu6.06.6.diff.gz | 138.6 KiB | 2039a8679f52eac7dfebc54a8bc7dac2ea4a93e411547693dde46ea72f85fd48 |
| mysql-dfsg-5.0_5.0.22-0ubuntu6.06.6.dsc | 1.1 KiB | 4480c3da5633c08ab195b5fadcba57ae6a9ca511c5f5391ee696dd765495b709 |
Binary packages built by this source
- libmysqlclient15-dev: No summary available for libmysqlclient15-dev in ubuntu dapper.
No description available for libmysqlclient1
5-dev in ubuntu dapper.
- libmysqlclient15off: No summary available for libmysqlclient15off in ubuntu dapper.
No description available for libmysqlclient15off in ubuntu dapper.
- mysql-client: No summary available for mysql-client in ubuntu dapper.
No description available for mysql-client in ubuntu dapper.
- mysql-client-5.0: No summary available for mysql-client-5.0 in ubuntu dapper.
No description available for mysql-client-5.0 in ubuntu dapper.
- mysql-common: No summary available for mysql-common in ubuntu dapper.
No description available for mysql-common in ubuntu dapper.
- mysql-server: No summary available for mysql-server in ubuntu dapper.
No description available for mysql-server in ubuntu dapper.
- mysql-server-5.0: No summary available for mysql-server-5.0 in ubuntu dapper.
No description available for mysql-server-5.0 in ubuntu dapper.
