What Are You Looking For?

Sign Up
Date:         Fri, 28 May 2010 10:36:31 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Important: mysql on SL5.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Important: mysql security update
Issue date:	2010-05-26
CVE Names:	CVE-2010-1626 CVE-2010-1848 CVE-2010-1850

A buffer overflow flaw was found in the way MySQL handled the parameters 
of the MySQL COM_FIELD_LIST network protocol command (this command is 
sent when a client uses the MySQL mysql_list_fields() client library 
function). An authenticated database user could send a request with an 
excessively long table name to cause a temporary denial of service 
(mysqld crash) or, potentially, execute arbitrary code with the 
privileges of the database server. (CVE-2010-1850)

A directory traversal flaw was found in the way MySQL handled the
parameters of the MySQL COM_FIELD_LIST network protocol command. An
authenticated database user could use this flaw to obtain descriptions 
of the fields of an arbitrary table using a request with a 
specially-crafted table name. (CVE-2010-1848)

A flaw was discovered in the way MySQL handled symbolic links to tables
created using the DATA DIRECTORY and INDEX DIRECTORY directives in 
CREATE TABLE statements. An attacker with CREATE and DROP table 
privileges, and shell access to the database server, could use this flaw 
to remove data and index files of tables created by other database users 
using the MyISAM storage engine. (CVE-2010-1626)

After installing this update, the MySQL server daemon (mysqld) will be 
restarted automatically.

SL 5.x

     SRPMS:
mysql-5.0.77-4.el5_5.3.src.rpm
     i386:
mysql-5.0.77-4.el5_5.3.i386.rpm
mysql-bench-5.0.77-4.el5_5.3.i386.rpm
mysql-devel-5.0.77-4.el5_5.3.i386.rpm
mysql-server-5.0.77-4.el5_5.3.i386.rpm
mysql-test-5.0.77-4.el5_5.3.i386.rpm
     x86_64:
mysql-5.0.77-4.el5_5.3.i386.rpm
mysql-5.0.77-4.el5_5.3.x86_64.rpm
mysql-bench-5.0.77-4.el5_5.3.x86_64.rpm
mysql-devel-5.0.77-4.el5_5.3.i386.rpm
mysql-devel-5.0.77-4.el5_5.3.x86_64.rpm
mysql-server-5.0.77-4.el5_5.3.x86_64.rpm
mysql-test-5.0.77-4.el5_5.3.x86_64.rpm

-Connie Sieh
-Troy Dawson
lastline

SciLinux: CVE-2010-1626 Important: mysql SL5.x i386/x86_64

Important: mysql security update

Summary

sent when a client uses the MySQL mysql_list_fields() client libraryfunction). An authenticated database user could send a request with anexcessively long table name to cause a temporary denial of service(mysqld crash) or, potentially, execute arbitrary code with theprivileges of the database server. (CVE-2010-1850)A directory traversal flaw was found in the way MySQL handled theparameters of the MySQL COM_FIELD_LIST network protocol command. Anauthenticated database user could use this flaw to obtain descriptionsof the fields of an arbitrary table using a request with aspecially-crafted table name. (CVE-2010-1848)A flaw was discovered in the way MySQL handled symbolic links to tablescreated using the DATA DIRECTORY and INDEX DIRECTORY directives inCREATE TABLE statements. An attacker with CREATE and DROP tableprivileges, and shell access to the database server, could use this flawto remove data and index files of tables created by other database usersusing the MyISAM storage engine. (CVE-2010-1626)After installing this update, the MySQL server daemon (mysqld) will berestarted automatically.SL 5.xSRPMS:mysql-5.0.77-4.el5_5.3.src.rpmi386:mysql-5.0.77-4.el5_5.3.i386.rpmmysql-bench-5.0.77-4.el5_5.3.i386.rpmmysql-devel-5.0.77-4.el5_5.3.i386.rpmmysql-server-5.0.77-4.el5_5.3.i386.rpmmysql-test-5.0.77-4.el5_5.3.i386.rpmx86_64:mysql-5.0.77-4.el5_5.3.i386.rpmmysql-5.0.77-4.el5_5.3.x86_64.rpmmysql-bench-5.0.77-4.el5_5.3.x86_64.rpmmysql-devel-5.0.77-4.el5_5.3.i386.rpmmysql-devel-5.0.77-4.el5_5.3.x86_64.rpmmysql-server-5.0.77-4.el5_5.3.x86_64.rpmmysql-test-5.0.77-4.el5_5.3.x86_64.rpm-Connie Sieh-Troy Dawsonlastline



Security Fixes

Severity
Issued Date: : 2010-05-26
CVE Names: CVE-2010-1626 CVE-2010-1848 CVE-2010-1850
A buffer overflow flaw was found in the way MySQL handled the parameters
of the MySQL COM_FIELD_LIST network protocol command (this command is

Related News

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo