Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2010-0109

Опубликовано: 16 фев. 2010
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2010-0109: mysql security update (MODERATE)

[5.0.77-4.2]

  • Add fixes for CVE-2009-4019, CVE-2009-4028, CVE-2009-4030 Resolves: #556505
  • Use non-expired certificates for SSL testing (upstream bug 50702)
  • Emit explicit error message if user tries to build RPM as root
  • Add comment suggesting disabling symbolic links in /etc/my.cnf

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

mysql

5.0.77-4.el5_4.2

mysql-bench

5.0.77-4.el5_4.2

mysql-devel

5.0.77-4.el5_4.2

mysql-server

5.0.77-4.el5_4.2

mysql-test

5.0.77-4.el5_4.2

Oracle Linux x86_64

mysql

5.0.77-4.el5_4.2

mysql-bench

5.0.77-4.el5_4.2

mysql-devel

5.0.77-4.el5_4.2

mysql-server

5.0.77-4.el5_4.2

mysql-test

5.0.77-4.el5_4.2

Oracle Linux i386

mysql

5.0.77-4.el5_4.2

mysql-bench

5.0.77-4.el5_4.2

mysql-devel

5.0.77-4.el5_4.2

mysql-server

5.0.77-4.el5_4.2

mysql-test

5.0.77-4.el5_4.2

Связанные CVE

CVE-2009-4019
CVE-2009-4030
CVE-2009-4028

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2009-4019

ubuntu
больше 15 лет назад

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

redhat логотип

CVE-2009-4019

redhat
больше 15 лет назад

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

nvd логотип

CVE-2009-4019

nvd
больше 15 лет назад

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

debian логотип

CVE-2009-4019

debian
больше 15 лет назад

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not ( ...

github логотип

GHSA-pvv2-gf98-5mv3

github
около 3 лет назад

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.