SciLinux: CVE-2007-3780 mysql SL5.x, SL4.x i386/x86_64

Date:         Thu, 30 Aug 2007 16:51:01 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA for mysql on SL5.x, SL4.x i386/x86_64
Comments: To: scientific-linux-errata@fnal.gov

Synopsis:	Important: mysql security update
Issue date:	2007-08-30
CVE Names:	CVE-2007-3780

A flaw was discovered in MySQL's authentication protocol. It is possible
for a remote unauthenticated attacker to send a specially crafted
authentication request to the MySQL server causing it to crash. (CVE-2007-3780)

SL 4.x

   SRPMS:
	mysql-4.1.20-2.RHEL4.1.0.1.src.rpm
   i386:
	mysql-4.1.20-2.RHEL4.1.0.1.i386.rpm
	mysql-bench-4.1.20-2.RHEL4.1.0.1.i386.rpm
	mysql-devel-4.1.20-2.RHEL4.1.0.1.i386.rpm
	mysql-server-4.1.20-2.RHEL4.1.0.1.i386.rpm
   x86_64:
	mysql-4.1.20-2.RHEL4.1.0.1.i386.rpm
	mysql-4.1.20-2.RHEL4.1.0.1.x86_64.rpm
	mysql-bench-4.1.20-2.RHEL4.1.0.1.x86_64.rpm
	mysql-devel-4.1.20-2.RHEL4.1.0.1.x86_64.rpm
	mysql-server-4.1.20-2.RHEL4.1.0.1.x86_64.rpm

SL 5.x

   SRPMS:
	mysql-5.0.22-2.1.0.1.src.rpm
   i386:
	mysql-5.0.22-2.1.0.1.i386.rpm
	mysql-bench-5.0.22-2.1.0.1.i386.rpm
	mysql-devel-5.0.22-2.1.0.1.i386.rpm
	mysql-server-5.0.22-2.1.0.1.i386.rpm
	mysql-test-5.0.22-2.1.0.1.i386.rpm
   x86_64:
	mysql-5.0.22-2.1.0.1.i386.rpm
	mysql-5.0.22-2.1.0.1.x86_64.rpm
	mysql-bench-5.0.22-2.1.0.1.x86_64.rpm
	mysql-devel-5.0.22-2.1.0.1.i386.rpm
	mysql-devel-5.0.22-2.1.0.1.x86_64.rpm
	mysql-server-5.0.22-2.1.0.1.x86_64.rpm
	mysql-test-5.0.22-2.1.0.1.x86_64.rpm

-Connie Sieh
-Troy Dawson
lastline

Date: Thu, 30 Aug 2007 16:51:01 -0500Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for mysql on SL5.x, SL4.x i386/x86_64Comments: To: scientific-linux-errata@fnal.govSynopsis: Important: mysql security updateIssue date: 2007-08-30CVE Names: CVE-2007-3780A flaw was discovered in MySQL's authentication protocol. It is possiblefor a remote unauthenticated attacker to send a specially craftedauthentication request to the MySQL server causing it to crash. (CVE-2007-3780)SL 4.x SRPMS: mysql-4.1.20-2.RHEL4.1.0.1.src.rpm i386: mysql-4.1.20-2.RHEL4.1.0.1.i386.rpm mysql-bench-4.1.20-2.RHEL4.1.0.1.i386.rpm mysql-devel-4.1.20-2.RHEL4.1.0.1.i386.rpm mysql-server-4.1.20-2.RHEL4.1.0.1.i386.rpm x86_64: mysql-4.1.20-2.RHEL4.1.0.1.i386.rpm mysql-4.1.20-2.RHEL4.1.0.1.x86_64.rpm mysql-bench-4.1.20-2.RHEL4.1.0.1.x86_64.rpm mysql-devel-4.1.20-2.RHEL4.1.0.1.x86_64.rpm mysql-server-4.1.20-2.RHEL4.1.0.1.x86_64.rpmSL 5.x SRPMS: mysql-5.0.22-2.1.0.1.src.rpm i386: mysql-5.0.22-2.1.0.1.i386.rpm mysql-bench-5.0.22-2.1.0.1.i386.rpm mysql-devel-5.0.22-2.1.0.1.i386.rpm mysql-server-5.0.22-2.1.0.1.i386.rpm mysql-test-5.0.22-2.1.0.1.i386.rpm x86_64: mysql-5.0.22-2.1.0.1.i386.rpm mysql-5.0.22-2.1.0.1.x86_64.rpm mysql-bench-5.0.22-2.1.0.1.x86_64.rpm mysql-devel-5.0.22-2.1.0.1.i386.rpm mysql-devel-5.0.22-2.1.0.1.x86_64.rpm mysql-server-5.0.22-2.1.0.1.x86_64.rpm mysql-test-5.0.22-2.1.0.1.x86_64.rpm-Connie Sieh-Troy Dawsonlastline

SciLinux: CVE-2007-3780 mysql SL5.x, SL4.x i386/x86_64

Summary

Security Fixes

Related News

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By