Gentoo: GLSA 200809-04 Standard: Bypass Privileges in MySQL Security
gentoo
September 4, 2008
A vulnerability in MySQL might allow users to bypass privileges and gain access to other databases.
Summary
Gentoo Linux Security Advisory GLSA 200809-04
https://security.gentoo.org/
Severity: Normal
Title: MySQL: Privilege bypass
Date: September 04, 2008
Bugs: #220399
ID: 200809-04
Synopsis
=======
A vulnerability in MySQL might allow users to bypass privileges and
gain access to other databases.
Background
=========
MySQL is a popular multi-threaded, multi-user SQL server.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-db/mysql < 5.0.60-r1 >= 5.0.60-r1
==========
Sergei Golubchik reported that MySQL imposes no restrictions on the
specification of "DATA DIRECTORY" or "INDEX DIRECTORY" in SQL "CREATE
TABLE" statements.
Impact
=====
An authenticated remote at...
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!